Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

datadog

Amazon EC2 security: How misconfigured and public AMIs expand your cloud attack surface

Feb 26, 2026 By Mallory Mooney In Datadog
Amazon Machine Images (AMIs) are templates for launching and scaling Amazon Elastic Compute Cloud (EC2) instances. Because Amazon EC2 AMIs are reused across environments and automation pipelines, decisions about how you build, source, manage, and share them directly affect your cloud attack surface.
Read Post
mend

AI Risk Management: Process, Frameworks, and 5 Mitigation Methods

Feb 26, 2026 By Tiffany Jennings In Mend
AI risk management is the process of identifying, assessing, and mitigating risks associated with artificial intelligence systems to ensure they are developed and used responsibly. It involves using frameworks like the NIST AI Risk Management Framework to address technical, ethical, and social challenges, including data bias, privacy violations, and security vulnerabilities.
Read Post
securonix

Securonix Threat Labs Monthly Intelligence Insights | January 2026

Feb 26, 2026 By Securonix In Securonix
Authors: Dheeraj Kumar and Nitish Singh The Monthly Intelligence Insights report provides a summary of top threats curated, monitored, and analyzed by Securonix Threat Labs in January 2026. The report also includes a synopsis of the threats, indicators of compromise (IoCs), tactics, techniques, and procedures (TTPs), and related tags. Each threat has a comprehensive summary from Threat Labs and search queries from the Threat Research team.
Read Post
11:11 systems

VCF 9, Infrastructure, and the AI Revolution

Feb 26, 2026 By Laura Shafer In 11:11 Systems
Artificial intelligence is changing the IT landscape in radical, unprecedented ways. It’s rewriting the rules of code generation, automating complex customer service interactions, and providing data insights that used to be impossible to extract, even in recent decades. However, for IT managers and those responsible for keeping the lights on, AI represents a massive shift in infrastructure requirements.
Read Post

How the Cloud Reshapes Your Attack Surface

Feb 26, 2026 By CrowdStrike In CrowdStrike
Cloud environments have reshaped the way applications are built and the way attackers break in. Traditional security strategies centered on malware and compromised endpoints are no longer enough. In today’s cloud, adversaries increasingly rely on valid credentials, identity abuse, and native cloud capabilities to move laterally and establish persistence without ever deploying malware.
View Video

Veracode CEO Brian Roche: How to Scale a Tech Company in the AI Era | Vlad Kachur Show Exclusive

Feb 26, 2026 By VERACODE In Veracode
How do you scale a world-class tech company while staying ahead in application security and AI-driven innovation? In this powerful exclusive interview on The Vlad Kachur Show, Brian Roche, CEO of Veracode, breaks down exactly how he transformed Veracode into one of the globe's leading application security platforms trusted by enterprises worldwide.
View Video

What are AI skill-gaps new defenders can leverage? #cybersecurity #ai #podcast

Feb 26, 2026 By LimaCharlie In LimaCharlie
AI skill gaps are a real conversation right now, and Chris Cochran, Field CISO and VP of AI Security at SANS Institute, breaks it down into three practical buckets for defenders who want to stay ahead. Start by figuring out what you can offload to AI: summarization, enrichment, repetitive tasks. Save the deterministic decisions for humans. Then learn how to secure AI itself: Finally, understand governance. Not just the technical side, but what your company is actually trying to do with AI. Security practitioners who can enable the business, not just protect it, become irreplaceable.
View Video

Episode 9 - Federal Cyber Defense: Legacy Debt, Cloud Shifts, and Network Truth

Feb 26, 2026 By Corelight In Corelight
Richard Bejtlich sits down with Jean Schaffer, Corelight’s Federal CTO, to discuss the unique hurdles facing government agencies in an era of escalating state-sponsored threats. Jean highlights the persistent challenge of legacy IT infrastructure and the "technical debt" that complicates modernization efforts across the Department of Defense, the intelligence community, and the civilian sector. The conversation explores the strategic shift toward cloud adoption as a means to decommission vulnerable on-premise hardware and the evolving "whole of nation" defense strategy that requires deeper public-private partnerships.
View Video
Arctic Wolf

CVE-2026-20127: Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability

Feb 26, 2026 By Julian Tuin In Arctic Wolf
On February 25, 2026, Cisco released fixes for a maximum severity authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller (formerly vSmart) and Cisco Catalyst SD-WAN Manager (formerly vManage), tracked as CVE-2026-20127. The flaw arises from a broken peering authentication mechanism in the control-plane authentication workflow. This vulnerability potentially allows a remote, unauthenticated threat actor to bypass authentication and obtain administrative privileges on an affected system.
Read Post
LimaCharlie

Agentic AI Security: MITRE ATT&CK Coverage Analysis in Minutes

Feb 26, 2026 By LimaCharlie In LimaCharlie
LimaCharlie's Agentic SecOps Workspace (ASW) enables true agentic security operations. With us, AI doesn't just advise but actively operates within your security environment. We do this by integrating everything, including AI, on our cloud platform via API. Our approach delivers superior AI security automation capabilities at a fraction of the cost, allowing security teams to scale operations without growing headcount.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.