Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

Arctic Wolf Observes Malicious Configuration Changes On Fortinet FortiGate Devices via SSO Accounts

Jan 21, 2026 By Arctic Wolf Labs In Arctic Wolf
Starting on January 15, 2026, Arctic Wolf began observing a new cluster of automated malicious activity involving unauthorized firewall configuration changes on FortiGate devices. This activity involved the creation of generic accounts intended for persistence, configuration changes granting VPN access to those accounts, as well as exfiltration of firewall configurations.
Read Post
sentrium

Duo Certificate Authority (CA) bundle update: Important changes coming February 2026

Jan 21, 2026 By James Drew In Sentrium
As technology evolves, so do the security foundations that underpin the systems we rely on every day. One such foundational change is coming soon from Cisco Duo, the widely‑used multi‑factor authentication (MFA) platform that many organisations deploy to secure access to critical systems. Although this change isn’t a vulnerability in the traditional sense, it could impact the availability of Duo authentication services for outdated software and integrations.
Read Post

Planning Your Workload Identity Roadmap: Standards, Patterns, and the Path Ahead - Webinar

Jan 21, 2026 By GitGuardian In GitGuardian
With 100x more non-human identities than human identities expected in 2025, the way we manage machine credentials is fundamentally broken. 83% of attacks involve compromised secrets, yet many organizations still rely on hardcoded keys, sprawling secrets, and scattered vault deployments.
View Video

Falcon for IT: Intelligence-Driven Defense and Response at Scale

Jan 21, 2026 By CrowdStrike In CrowdStrike
Modern security teams need complete visibility across every asset to reduce exposure and stop threats before they escalate. Gaps in visibility, unmanaged devices, and delayed remediation increase risk and give adversaries more opportunity to operate. Falcon for IT empowers SecOps with the visibility and context needed to take decisive action.
View Video

Why Measuring Security ROI Matters

Jan 21, 2026 By Reach Security In Reach Security
Security investment only matters if it can be measured. In this roundtable, Josh Jones makes a straightforward point: security leaders need a way to quantify whether their investments are actually producing outcomes that can be explained to executives and boards. That challenge isn’t about buying more tools. It’s about answering basic questions: What are our tools actually doing? Where are controls misaligned or underused?
View Video
foresiet

The Comprehensive Guide to Brand Protection in 2026

Jan 21, 2026 By foresiet In Foresiet
Let’s be honest: in 2026, the traditional “firewall” is a bit of a relic. Having spent years analyzing how threat actors operate, I can tell you they aren’t banging on your front door anymore. Why would they? It’s much easier to build a pixel-perfect replica of your front door down the street and trick your customers into handing over their keys there.
Read Post
Feroot

Can WAF prevent browser attacks that break PCI compliance?

Jan 21, 2026 By Feroot In Feroot
The answer to whether WAF can see and prevent browser attacks that break PCI compliance depends on the lens you use. Through the lens of Requirement 6.4.2, the answer is mostly yes. But through the lens of 6.4.3 and 11.6.1, it gets a little blurry. Requirement 6.4.2 is about stopping web-based attacks at the application layer by inspecting outbound and inbound HTTP traffic at the server side.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.