Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

indusface

Exposed LLM Infrastructure: How Attackers Find and Exploit Misconfigured AI Deployments

Apr 17, 2026 By Aayush Vishnoi In Indusface
Someone is scanning your LLM infrastructure right now. They are not waiting for you to finish your security review. Between October 2025 and January 2026, GreyNoise’s honeypot infrastructure captured 91,403 attack sessions targeting exposed LLM endpoints. These were two distinct campaigns systematically mapping the expanding attack surface of misconfigured AI deployments. Your team is moving fast on AI. LLM servers are going live, inference APIs are being connected, MCP endpoints are being spun up.
Read Post

Is Your Patch Management Strategy Ready for AI-Powered Attacks? | Nishith Datta | Titan

Mar 31, 2026 By Indusface In Indusface
In this Episode of Guardians of the Enterprise, Ashish Tandon, Founder & CEO, Indusface and Nishith Datta, Head of Cybersecurity at Titan, discusses one of the most pressing challenges in modern security, vulnerability patching in the age of AI. As AI accelerates both the scale and sophistication of attacks, traditional patching cycles are no longer enough. Nishith shares his frontline perspective on how enterprises securing omnichannel consumers must rethink their approach to exposure management.
View Video

Busting the Biggest Myth in Retail Cybersecurity | Nishith Datta | Titan

Mar 31, 2026 By Indusface In Indusface
In this Episode of Guardians of the Enterprise, Ashish Tandon, Founder & CEO, Indusface, and Nishith Datta, Head of Cybersecurity at Titan, breaks down one of the biggest myths in retail cybersecurity, especially in the era of omnichannel distribution channels. As digital and physical experiences evolve, securing consumer journeys is no longer straightforward. Nishith shares his frontline perspective on why traditional assumptions around retail security fall short, and what organizations must rethink to stay resilient.
View Video
indusface

46 Vulnerability Statistics 2026: Key Trends in Discovery, Exploitation, and Risk

Mar 31, 2026 By Vinugayathri Chinnasamy In Indusface
Vulnerabilities remain one of the most exploited entry points for cyberattacks. According to the Indusface State of Application Security Report 2026, attacks targeting website vulnerabilities reached 6.29 billion in 2025, up from 4 billion in 2024, a 56% year-over-year increase. That number is not just a trend line. It means attackers are finding, weaponizing, and exploiting vulnerabilities faster than most security teams can respond.
Read Post
indusface

Cloudflare WAF vs AppTrana: Which Platform Is Right for You?

Mar 31, 2026 By Vinugayathri Chinnasamy In Indusface
You started evaluating Cloudflare or already deployed it, because it offered the fastest path to CDN, DDoS resilience, and baseline WAF coverage without heavy engineering effort. Teams that find their way to this comparison typically share one of three experiences: This guide covers what Cloudflare does well and where AppTrana changes the model. By the end, you will be able to determine whether the gap you are hitting is something an upgrade solves, or whether the operating model itself needs to change.
Read Post
indusface

CVE-2026-20963: SharePoint Deserialization Remote Code Execution Vulnerability

Mar 24, 2026 By Deepak Kumar Choudhary In Indusface
Microsoft SharePoint, a core platform for enterprise collaboration, is facing active exploitation through a newly confirmed vulnerability, tracked as CVE-2026-20963. Rooted in unsafe deserialization of user-controlled data, this vulnerability allows remote code execution with low-privileged authenticated access, making it a high-priority threat for organizations worldwide.
Read Post
indusface

Is Wix Secure Enough? Understanding the Next Layer of Protection for Growing Websites

Mar 18, 2026 By Vinugayathri Chinnasamy In Indusface
You click “Publish” on your Wix site and breathe easy. HTTPS? Check. Automatic updates? Check. Hosting handled? Check. Your website feels bulletproof. But here is the catch: security is not static and neither is your website. Every new feature, integration, and user interaction opens a door, sometimes one you didn’t even know existed. Hackers are constantly scanning, probing, and testing sites like yours. They don’t care if you are small; they care only about finding a weak spot.
Read Post
indusface

CVE-2026-27739: Angular SSR Request Vulnerability Enabling Server-Side Request Forgery

Mar 9, 2026 By Bhargavi Pallati In Indusface
A critical vulnerability has been discovered in Angular Server-Side Rendering (SSR) that could allow attackers to manipulate request handling and trigger unauthorized server-side requests. Tracked as CVE-2026-27739, the vulnerability arises from how Angular SSR reconstructs request origins using HTTP headers such as Host and X-Forwarded-*. In affected versions, these headers were not strictly validated before being used to build request URLs.
Read Post

Cybersecurity Is No Longer Just the CISO's Responsibility; It's Everyone's

Mar 6, 2026 By Indusface In Indusface
In Episode of Guardians of the Enterprise, Ashish Tandon, Founder & CEO, Indusface, spoke with Madhur Joshi, CISO at HDB Financial Services (part of the HDFC Group), about building a security-first culture across the organization. They discussed how cybersecurity is no longer limited to IT, and why embedding security into every business function is critical. Watch this video to learn how HDB Financial Services has made cyber security a shared responsibility across teams.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.