Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

WatchGuard

Why WatchGuard Acquired Perimeters.io: Making Cloud Security Work for MSPs

May 6, 2026 By Mick McCarter In WatchGuard
If you ask any MSP what they use to protect their clients’ cloud environments, you will get one of two answers. Either they’ll point to the native security tools built into platforms like Microsoft 365 or Google Workspace. Or they’ll describe a patchwork of different products stitched together to cover identity, configuration, and SaaS visibility. Neither approach is ideal. But both reflect the reality MSPs are working with today.
Read Post
WatchGuard

Meet Rai: AI That Runs More of the Security Work

May 6, 2026 By The Editor In WatchGuard
MSPs are managing more customers, more environments, and more tools than ever before. At the same time, customer expectations keep rising -- faster response times, clearer reporting, and consistent service across every client. All of that pressure lands on already‑lean teams. That’s the reality Rai was built for.
Read Post
1Password

Why security makes or breaks M&As, with Matt O'Leary

May 6, 2026 By Dave Lewis In 1Password
Security is tied to business operations in many (often unappreciated) ways, but the connection is rarely more visible or consequential than during an acquisition or partnership. In those deals, a company stakes its reputation and finances on another company, and a lapse in security can throw the whole thing into chaos.
Read Post
upguard

AI GitHub Agents: How One Issue Leaked Private Repos

May 6, 2026 By Shane Moosa In UpGuard
In May 2025, a developer using Claude with the GitHub MCP server asked their AI assistant to do something entirely routine: review the open issues in a public repository. The repository contained a malicious GitHub issue planted by a researcher demonstrating a security vulnerability. The issue contained hidden instructions. The AI read them, followed them, accessed the developer's private repositories, and posted the contents in a publicly visible pull request. No credentials were stolen.
Read Post
memcyco

How to Detect Account Takeover in Real-Time: Moving Beyond Login Alerts

May 6, 2026 By Ezra M. In Memcyco
Most enterprise fraud stacks are built to detect account takeover after it’s already succeeded. Login anomaly rules fire at authentication. Transaction models fire at monetization. By both points, the attacker is already inside. Knowing how to detect account takeover in real-time means shifting detection upstream – to behavioral signals, device trust, credential exposure feeds, and session integrity monitoring that activate before any fraudulent transaction is attempted.
Read Post
gitprotect

How leadership should assess DevOps backup solutions before purchase

May 6, 2026 By Beata Moryl In GitProtect
Managing a growing list of vendors can add complexity across an organization. Adding a new partner may require navigating additional administrative processes and internal alignment. As a result, third-party DevOps backup often ends up lower on the priority list until one serious data deletion, prolonged recovery, or failed restore turns it from a “nice to have” into an executive-level decision.
Read Post

The Exploitability Intelligence Gap: What Security Teams Can Know Before CISA KEV

May 6, 2026 By Nucleus Security In Nucleus
In this webinar, Nucleus Security CEO Steve Carter and Product Marketing Lead Tally Netzer break down the growing “exploitability intelligence gap” and what it means for modern vulnerability and exposure management programs. Drawing from six months of research and real-world vulnerability data, they explore how attacker timelines have compressed, why traditional reactive workflows are struggling to keep pace, and where organizations are missing critical signals before exploitation begins.
View Video

Ep. 57 - Russia's Proxy Bridge: BlackCat, Scattered Spider, and the Kremlin

May 6, 2026 By SafeBreach In SafeBreach
In Part 4 of our Russian intelligence series, host Tova Dvorin and Adrian Culley map the proxy bridge between Western teenage hackers and Moscow. BlackCat (ALPHV) ransomware-as-a-service is the operational hinge: Scattered Spider breaks in, BlackCat encrypts, and the FSB watches the dashboard. Hear how the Kremlin earns plausible deniability, why a $115M extortion stream self-funds Russian intelligence, and what MI6's new "hybrid shadow war" warning means for defenders simulating Rust-based ransomware in their own networks.
View Video

AI Is Replacing Security Dashboards (Headless Cloud Security Explained)

May 6, 2026 By Sysdig In Sysdig
AI is changing cloud security—and dashboards might be next to go. In this video, we introduce headless cloud security: a new model where AI agents, not humans, operate security systems. Instead of dashboards and manual triage, security becomes API-driven, automated, and built for autonomous execution. This shift redefines DevSecOps, cloud security, and AI security workflows—moving humans from operators to orchestrators.
View Video
keeper

2026 Public Sector Cyber Attacks and Data Breaches

May 6, 2026 By Kim Howard In Keeper
In 2026, the public sector continues to face numerous cyber attacks, with data breaches often exposing sensitive information, disrupting essential services and undermining public trust. From municipal governments to federal agencies, public sector organizations of all sizes face challenges from threat actors exploiting outdated systems, human error and expanding digital footprints. These incidents are more than isolated security failures.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.