Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Configuration Rot: Why Security Tools Quietly Stop Working

Feb 23, 2026 By Reach Security In Reach Security
Security tools don’t usually break. They just slowly stop doing what you think they’re doing. Or perhaps were never set up to do what you needed in the first place. Something got deployed. It worked. Then it drifted. No one noticed. And three years later, you’re questioning the renewal because you’re not even sure what it’s protecting anymore. That’s configuration rot. Thanks to Julian Lee at eChannelNews for the fun, thoughtful and much needed conversation on this topic and more.
View Video

WatchGuard's Biannual Internet Security Report 2025 H2 - The 443 Podcast - Episode 359

Feb 23, 2026 By WatchGuard Technologies In WatchGuard
This week on the podcast, we cover the WatchGuard Threat Lab's Internet Security Report for the second half of 2025. In this episode, we cover the latest trends in malware at both the network perimeter and endpoints, network attacks, and the top malicious domains from the period before, and end with some tips everyone can use to defend their networks.
View Video
archTIS

Security Roles in SharePoint Architecture: SharePoint Security Matrix

Feb 23, 2026 By Darroll Walsh In archTIS
Microsoft SharePoint has a mature, well-structured security model. It gives organizations control over who can access sites, libraries, and documents, and for most day-to-day needs, it works well. But there is a fundamental limitation built into how SharePoint security works: it controls access based on role, not on the sensitivity of the content itself.
Read Post
safebreach

Engineer Custom Attack Validation at Scale - with the Developer-First VS Code Workflow for Breach Studio

Feb 23, 2026 By Uzi Galili In SafeBreach
The new SafeBreach extension for VS Code integrates Breach Studio’s powerful custom attack development capabilities directly into the world’s most popular IDE to enable security teams to engineer custom attack simulations with unprecedented speed and precision. Security engineers can leverage Git-native version control, AI-assisted authoring, and real-time IntelliSense linting to eliminate friction and reduce failed executions.
Read Post
veracode

The Myth of Self-Healing Code: Why Claude Code Security Isn't Replacing Application Security

Feb 23, 2026 By Veracode Threat Research In Veracode
Anthropic recently launched Claude Code Security, an AI-powered vulnerability scanner that can analyze your codebase, trace data flows across files, find bugs, and even propose patches. It represents a meaningful advance in how developers can get security insights earlier in the development process. But let’s be clear: this is not a replacement for a comprehensive application security program.
Read Post
Arctic Wolf

Welcoming Sevco Security: Expanding the Aurora Platform with Visionary Exposure Management

Feb 23, 2026 By Dan Schiappa In Arctic Wolf
By Dan Schiappa, President, Technology and Services, Arctic Wolf Security operations is undergoing a fundamental shift. For years, organizations have focused primarily on detecting and responding to threats after they occur. But as attack surfaces expand across endpoints, cloud, identity, SaaS, and infrastructure, that reactive model is no longer enough.
Read Post
mend

Why Claude Code Security Is a Big Moment for Application Security

Feb 23, 2026 By Stephanie Broyles In Mend
Anthropic’s launch of Claude Code Security is exciting. Not because it changes everything overnight — but because it confirms something important: AI-powered security inside the developer workflow is becoming the new normal. And that’s a win for the entire industry.
Read Post

Cursor Composer 1.5 is Here: Is It Actually Better?

Feb 23, 2026 By Snyk In Snyk
Is Cursor’s new Composer 1.5 model a major leap forward, or just a marginal update? Today, we’re putting the latest version of Cursor’s agentic AI to the test using our "Production-Ready Note App" prompt. We compare the speed, UI design, and agentic capabilities of 1.5 against version 1.0. Most importantly, we run a full security audit using the Snyk extension to see if the AI-generated code is actually safe for production.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.