Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Accelerate Your FedRAMP Journey with AppTrana WAAP

Dec 5, 2025 By Indusface In Indusface
Achieving FedRAMP compliance is complex, but AppTrana WAAP simplifies it. This video explains how AppTrana delivers continuous vulnerability scanning, attack prevention, SIEM-friendly audit logs, real-time incident response, and automated remediation through SwyftComply. Perfect for CISOs, compliance teams, and cloud security leaders preparing for FedRAMP audits.
View Video
indusface

LLMs, Quantum Computing, and the Top Challenges for CISOs in 2026

Dec 5, 2025 By Vinugayathri Chinnasamy In Indusface
Cybersecurity in 2026 is entering its most transformative and volatile phase yet. For CISOs, the landscape is no longer defined only by web, network, and cloud threats. Instead, attackers now target AI/LLM systems, APIs, identity platforms, SaaS ecosystems and supply chains. The surge in attacks across applications, APIs, and GenAI systems indicates that adversaries are scaling faster, using automation, AI-assisted exploitation, and new social engineering vectors.
Read Post
indusface

CVE-2025-54057: Stored XSS Vulnerability in Apache SkyWalking Exposes Monitoring Dashboards to Attackers

Dec 2, 2025 By Bhargavi Pallati In Indusface
Apache SkyWalking is one of the most widely adopted open-source Application Performance Monitoring (APM) and observability platforms, trusted by developers and DevOps teams to visualize telemetry, trace distributed systems, and ensure application uptime. However, a recently disclosed vulnerability has revealed that the very dashboards designed to improve visibility could be turned into attack vectors.
Read Post
indusface

How to Automate API Security Testing During CI/CD

Nov 28, 2025 By Vinugayathri Chinnasamy In Indusface
During the first half of 2025, APIs faced significantly higher number of attacks than traditional web applications. On average, attacks per API host were 72% higher than those targeting websites, and exploitation of API vulnerabilities surged 13× compared to a 27% increase for website vulnerabilities, according to the State of Application Security Global H1 2025.
Read Post
indusface

API Security for SaaS Product Development: Protecting Multi-Tenant Platforms and Customer Trust

Nov 28, 2025 By Vinugayathri Chinnasamy In Indusface
APIs are now the foundation of SaaS product development, powering authentication, user onboarding, billing, integrations, webhooks, analytics, and internal microservices. As this API footprint grows, the threat landscape has intensified. The Indusface State of Application Security H1 2025 Report recorded a 104% rise in API-targeted attacks, a 13X increase in API vulnerability exploits, and 388% more DDoS attacks on API hosts than on websites.
Read Post

Apache Tomcat Vulnerability CVE-2025-55752: Risk & Protection

Nov 28, 2025 By Indusface In Indusface
CVE-2025-55752 exposes a dangerous path traversal flaw in Apache Tomcat caused by a rewrite and decoding regression. This video breaks down how the bug works, why it becomes severe when combined with HTTP PUT, which versions are affected, and what teams must do to patch or mitigate it. We also show how WAAP protection blocks exploitation attempts even before servers are updated.
View Video

Inside Adhaar : Challenges of Securing the World's Largest Digital Identity System #cybersecurity

Nov 28, 2025 By Indusface In Indusface
Discover what it takes to secure Aadhaar, the world’s largest digital identity system. This teaser dives into the massive responsibility behind protecting over a billion citizens’ data powered by strict privacy guardrails, zero-trust principles, encryption, biometric template protection, and privileged access management at national scale. In this clip from Guardians of the Enterprise, Nishith Kumar Datta (Head of Cybersecurity & InfoSec, Titan) shares his insights on the challenges and discipline required to secure such a critical national platform.
View Video
indusface

DPDP Rules 2025: The New Compliance Era and How AppTrana Helps You Get There

Nov 24, 2025 By Vinugayathri Chinnasamy In Indusface
On 14 November 2025, the Government of India notified the Digital Personal Data Protection (DPDP) Rules, 2025, officially activating the DPDP Act, 2023. The Rules transform the law from a policy framework into a fully enforceable compliance regime, starting an 18-month implementation countdown for every business in India.
Read Post
indusface

Cloudflare Outage Nov 2025: Architectural Lessons for Building Resilient Infrastructure

Nov 20, 2025 By Karthik Krishnamoorthy In Indusface
The internet’s fragility was evident again during the recent Cloudflare outage. A single internal fault rippled outward and disrupted major websites and business applications. X, ChatGPT, media platforms, dashboards and thousands of other services simultaneously showed 5xx errors. And this is not new.
Read Post
indusface

CVE-2025-55752: Apache Tomcat Path Traversal Vulnerability

Nov 18, 2025 By Deepak Kumar Choudhary In Indusface
Apache Tomcat continues to play a central role in hosting Java-based web applications across enterprises, cloud services, and government systems. Its reliability and lightweight architecture make it a go-to choice for developers, but its ubiquity also means that a single vulnerability can have widespread security implications. CVE-2025-55752, disclosed in late 2025, highlights how a subtle processing regression can evolve into a high-impact vulnerability under the right conditions.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.