Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Partnerships Taking on AI Security: Daniel Bernard, CrowdStrike Chief Business Officer

May 7, 2026 By CrowdStrike In CrowdStrike
The previous episode of the Adversary Universe podcast explored the “vuln-pocalypse” and the implications of advanced AI models accelerating vulnerability discovery and exploitation. Now, we’re diving into how companies are working together to face these evolving security risks. CrowdStrike Chief Business Officer Daniel Bernard spends much of his time talking with partners and customers about how to address their growing concerns: Is their business protected? Do they know which vulnerabilities are in their environment? What do they do about them?
View Video

Episode 14 - Harvest Now, Decrypt Later: The Shift to Post-Quantum Cryptography

May 7, 2026 By Corelight In Corelight
The emergence of quantum computing has introduced a definitive expiration date for classical encryption, fueling a "harvest now, decrypt later" strategy among sophisticated nation-state actors. In this episode, Vince Stoffer joins Richard Bejtlich to demystify Post-Quantum Cryptography (PQC) and explain why organizations must move beyond a "set it and forget it" mentality regarding their encryption standards.
View Video
foresiet

CVE-2026-0300: Unauthenticated Root RCE via Buffer Overflow in Palo Alto PAN-OS User-ID Authentication Portal

May 7, 2026 By foresiet In Foresiet
CVE-2026-0300 is a critical buffer overflow vulnerability in the User-ID Authentication Portal (Captive Portal) of Palo Alto Networks PAN-OS. It allows unauthenticated remote attackers to send specially crafted packets and execute arbitrary code with root privileges on affected PA-Series and VM-Series firewalls. The flaw, actively exploited in the wild since early May 2026, stems from improper handling of input in the authentication portal service.
Read Post
trilio

The VMware Exodus, the DR Gap It Exposed, and Why We Built Trilio Site Recovery to Fill It

May 7, 2026 By Murali Balcha In Trilio
Something significant is happening across enterprise IT right now — and I do not think it has been fully reckoned with yet. More than 5,000 organizations are actively evaluating or executing a migration away from VMware. The Broadcom acquisition changed the economics of VMware dramatically and abruptly. Licensing costs surged. Bundling decisions eliminated flexibility.
Read Post
levelblue

What It Really Takes to Secure a Major Championship

May 7, 2026 By LevelBlue In LevelBlue
By the time a major championship begins, almost everything that can be controlled has already been decided. The course is set. Infrastructure is locked in. Staff, vendors, broadcasters, ticketing platforms, and payment systems are all live. Millions of transactions, digital and physical, will occur in a matter of days, under global scrutiny, with no margin for error. From a cybersecurity perspective, this is not a theoretical exercise. It is an operational one.
Read Post
knowbe4

World Password Day 2026: Treat Identity as the Perimeter (and Act Like It)

May 7, 2026 By Dr. Kawin Boonyapredee In KnowBe4
World Password Day is no longer just a nudge to pick stronger passwords, it’s a moment to rethink identity. Attackers rarely “hack” systems today; they log in as you. Combine expert guidance on phishing, MFA, password managers, behavioral defenses, and new threats from AI and quantum computing to better secure your accounts now and for the future.
Read Post
CalCom

How to Talk to Your Board About System Hardening

May 7, 2026 By Joan Levin In CalCom
You know your servers need hardening. Getting leadership to prioritise, fund, and support the effort is the harder challenge. Here’s our experts’ best advice for how to talk to the C-suite and board about the need for automated server hardening. You already know the servers are drifting. Configurations change. Exceptions pile up. Standards slip over time. The hard part is not identifying the problem.
Read Post
sumologic

AI SOC vs. white box AI: Why black boxes fail in the real world

May 7, 2026 By David Girvin In Sumo Logic
There’s a growing wave of “AI SOC” startups promising autonomous everything. They’ll triage your alerts, investigate threats, and even run your playbooks. Push a button, let the machine handle the mess, and enjoy the magic. It sounds great until the moment something breaks. Then everyone, not just security, asks the same question: “What exactly did it do?” And that’s when these systems turn into a liability.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.