Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

acronis

Ivy League universities under siege: The cyberattacks targeting Harvard, Princeton and Penn

Nov 26, 2025 By Lee Pender In Acronis
The Ivy League is the promised land for thousands of high school students, but it has also become a target for cyberattackers. Three of the most prestigious universities in the United States suffered sophisticated cyberattacks in fall 2025. Harvard University, Princeton University and the University of Pennsylvania have all disclosed data breaches that compromised sensitive information about alumni, donors, students and faculty members.
Read Post
sumologic

Detecting SHA1-Hulud: the logs must flow

Nov 26, 2025 By Daniel Kaiser In Sumo Logic
Sha1-Hulud has burrowed back into our lives, spreading rapidly and causing more destruction than ever. Named after the famous worm from the Dune franchise, this attack is also impacting global organizations. Since its first widescale spread on September 16, 2025, this worm has demonstrated its ability to propagate rapidly with high impact using the following techniques: This variant includes some new behavior, including.
Read Post
protecto

Enterprise PII Protection: Two Approaches to Limit Data Proliferation

Nov 26, 2025 By Anwita In Protecto
As enterprise data moves across applications, databases, and analytics pipelines, uncontrolled proliferation of PII increases compliance risk and a potential breach. IT leaders and product managers are often struggling to find the best way to protect data. Protecto Vault helps organizations contain this risk by centralizing PII governance and offering two powerful architectural models to minimize data exposure – the Tokenization Model and the Centralized Profile Model.
Read Post
CurrentWare

Top Features of Remote Workforce Management Software in 2026

Nov 26, 2025 By CurrentWare In CurrentWare
Remote work is evolving and has become quite complex. The best remote employee management software heading into 2026 has taken a huge leap forward with advanced analytics and automation features that are perfectly integrated with employee experience capabilities to bring the team together.
Read Post

Why doesn't point-in-time compliance work? #cybersecurity #compliance #podcast

Nov 26, 2025 By LimaCharlie In LimaCharlie
PCI compliance has never been about passing a single audit and forgetting about it until next year. In our recent PCI DSS 4.0 session, author Branden R. Williams explained why point-in-time assessments create a false sense of security. Passing a compliance report doesn't mean you'll still be compliant two days later if something changes. Configuration drift happens. Systems change. Sometimes it's accidental. Other times, organizations deliberately configure things to pass an assessment, then revert to their old ways afterward.
View Video

AI hype & the future of SecOps, what's changed in 30 years? With Erik Bloch from Illumio [271]

Nov 26, 2025 By LimaCharlie In LimaCharlie
On this episode of The Cybersecurity Defenders Podcast we speak with Erik Bloch, VP of Security at Illumio, about better tools to combat burnout rate and discuss the reality of AI in security. Erik Bloch has 30+ years of information and cyber security experience, both as an IC and as a leader of teams. “People first” has always been his approach. He has led entire security and IT functions at smaller companies, and been the CISOs leading big teams at larger orgs.
View Video
Snyk

Snyk Log Sniffer: AI-Powered Audit Log Insights for Security Leaders

Nov 26, 2025 By Liran Tal In Snyk
Snyk empowers organizations to build fast and stay secure. As security and engineering teams scale their use of Snyk across the enterprise, understanding what's happening across your group and organizations becomes critical–from API integrations and user access patterns to policy changes and security events. However, raw audit logs alone can be overwhelming and difficult to interpret. Security leaders need instant visibility into critical events, risk patterns, and user activity.
Read Post
nightfall

Why Reg S-P Compliance Is Becoming a Critical Risk for Financial Firms - and How Nightfall Can Help

Nov 26, 2025 By Chris Martinez In Nightfall
In finance, protecting customer data isn’t just good practice. It’s a regulatory mandate. The SEC’s Regulation S-P (Privacy of Consumer Financial Information) requires financial firms to guard against unauthorized access, maintain robust data-disposal practices, and have a formal incident response program. As the threat landscape has evolved, so has the regulation. This all means one thing: complacency is no longer an option.
Read Post
cyberark

EP 20 - Why agentic AI is changing the security risk equation

Nov 26, 2025 By CyberArk In CyberArk
As enterprises embrace agentic AI, a new security risk equation emerges. In this episode of Security Matters, host David Puner sits down with Lavi Lazarovitz, VP of Cyber Research at CyberArk Labs, to unpack how AI agents and identity security are reshaping the threat landscape. Learn why privileged access is now the fault line of enterprise security, how attackers exploit overprivileged AI agents, and what security teams must rethink before scaling AI.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.