Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

1Password

All SSO security is not created equally

Jun 17, 2025 By Rachel Sudbeck In 1Password
This blog has been adapted from a section of 1Password’s ebook: Why SSO is not enough for identity security. To read the complete ebook, click here. Single sign-on (SSO) solutions integrate with a company’s identity provider (IdP) to allow users to authenticate to multiple applications via a single log-in. By reducing the number of access points and employee credentials, SSO reduces a company’s attack surface.
Read Post

What is a Web Browser Based Attack?

Jun 17, 2025 By Indusface In Indusface
Did you know 95% of undetectable malware spreads through your browser? From Cross-Site Scripting (XSS) and CSRF to Clickjacking and drive-by downloads—web browser-based attacks are more common and more dangerous than ever. In this video, we break down how these attacks work, what causes them, and what you can do to stay protected—both as a user and a website owner.
View Video
apono

API Gateway Security: The Essential InfoSec Guide

Jun 17, 2025 By The Apono Team In Apono
As the software world shifted toward microservices and distributed architectures, the volume and complexity of API traffic have skyrocketed. Unfortunately, so has the number of API-related breaches and cyber attacks. Last year, nearly 44% of all advanced bot traffic online targeted API endpoints, while traditional web applications received just 10% of the malicious traffic. It’s no surprise that 57% of organizations admit to having suffered API-related breaches in the past two years.
Read Post

Your Code Might Be Using Risky AI Models

Jun 17, 2025 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video
jit

New Unifying API and Product Security with Jit + Traceable: Accelerated Triage, Smarter Remediation

Jun 17, 2025 By Charlie Klein In Jit
As the Director of Product Marketing for Jit, Charlie is responsible for telling Jit's story to the developer and security communities. We’re excited to announce that Traceable is now integrated with Jit. Today’s security teams are overwhelmed — drowning in vulnerability alerts and disconnected tooling. Traceable delivers deep, contextual API and application security insights, automatically identifying vulnerabilities with rich runtime context and risk-based prioritization.
Read Post

Turn Visitors into Buyers: How to Reduce Customer Drop-Off & Increase Conversion | Shopify Webinar

Jun 17, 2025 By miniOrange In miniOrange
Over 70% of customers abandon their carts before checkout, and most stores never figure out why. In this exclusive webinar, we break down why Shopify visitors abandon their carts, where the drop-offs occur, and how to win them back with smart re-engagement strategies and powerful analytics tools. From identifying drop-off points to fixing friction and boosting conversions, we’ve covered it all! What You’ll Learn.
View Video

Catch Bugs Faster: Cursor's BugBot for AI Code Review

Jun 17, 2025 By Snyk In Snyk
In this video we dive into Cursor's 1.0 release, focusing on their new BugBot feature. This AI-powered tool integrates with your GitHub workflow to automatically review pull requests and identify potential bugs. We'll show you how to set up BugBot, trigger it on a pull request, and analyze the issues it finds, including a real-world example of it catching errors in AI-generated code from Google's Jules tool.
View Video
Snyk

The New Threat Landscape: AI-Native Apps and Agentic Workflows

Jun 17, 2025 By Snyk Team In Snyk
Businesses are moving beyond AI experiments and proofs of concept. As we approach what IDC is predicting will be the “AI pivot years” of 2025-2026, organizations are prioritizing, planning, and building for scale. This shift includes AI agents — self-directed tools that automate tasks — as technology providers strive to simplify development workflows. Under the surface, AI systems expose an expanded threat landscape that spans the software development lifecycle (SDLC).
Read Post
fireblocks

Stablecoins in Banking: Strategic Insights from the 2025 Survey

Jun 17, 2025 By Fireblocks In Fireblocks
The strategic conversation around stablecoins has moved beyond innovation labs and pilot programs. It’s now a focus in executive leadership meetings and shareholder reports. In June, Bank of America’s CEO highlighted stablecoins as a potential new form of transaction account, one the industry must be ready for. SMBC has signed a multi-party MOU to explore wholesale stablecoin infrastructure.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.