Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

fidelis security

AWS ECR Scanning: The Practical Guide to Securing Your Containers

Feb 4, 2026 By Fidelis Security In Fidelis Security
If you operate containers on AWS you’re likely familiar with how vulnerabilities can accumulate. The majority of container images currently include least one critical security flaw. Frequently hidden within a base image or an overlooked dependency. This makes enhancing your AWS container security essential. It’s the method to prevent problems such, as data leaks, privilege abuse and supply-chain threats.
Read Post
bitsight

Automating Cybersecurity Governance: How Bitsight Is Expanding AI-Powered Workflows Across SPM and VRM

Feb 4, 2026 By Raquel Oliveira In BitSight
Security governance was never meant to be this manual. Yet for most security and third-party risk teams, governance work still means reviewing documents line by line, mapping controls by hand, interpreting evidence subjectively, and repeating the same processes across internal teams, subsidiaries, and vendors. These activities are critical, but they’re also slow, inconsistent, and difficult to scale. At Bitsight, we believe cybersecurity governance should move at the speed of risk.
Read Post
How Whistleblowers and Activists Protect Their Identity When Mailing

How Whistleblowers and Activists Protect Their Identity When Mailing

Feb 4, 2026 By SecuritySenses In SecuritySenses
When you deal with sensitive information as a whistleblower, activist, or journalist, even sending regular documents can feel risky. Sure, the letter itself can be 100% legal, nothing shady at all, just information. But the stress is still there. The problem isn't really what you're sending. rather it's the trail that leads straight back to you.
Read Post
Featured Post
Innovation at Speed: Why Machine Identity Security Is Now a Boardroom Priority

Innovation at Speed: Why Machine Identity Security Is Now a Boardroom Priority

Feb 3, 2026 By Dave McGrail, Head of Business Consultancy In Xalient
CEOs across the manufacturing sector remain optimistic about the potential of digital transformation to boost productivity, efficiency, and competitiveness. Yes - manufacturers face a double bind - innovate fast (and potentially feel pain) or risk falling behind; but every step forward expands the attack surface. This sits alongside a stark reality: the manufacturing sector now suffers 26% of all cyberattacks, making it one of the most targeted industries globally. However, the most significant emerging threat is not always the one that leaders expect.
Read Post
cyberhaven

Cyberhaven DSPM: Uniting DSPM & DLP to Secure Data in the AI Era

Feb 3, 2026 By Bruce Chen In Cyberhaven
Enterprise security programs were built for a time when data lived in a small number of predictable locations. That model no longer holds. Today, data is constantly created, copied, transformed, and shared across cloud applications, endpoints, on-prem systems, and generative AI tools, often without clear visibility. Protecting data in the AI era requires three pillars: holistic visibility across the full data lifecycle, a deep understanding of data with context (e.g.
Read Post
fidelis security

Inside Cloud Malware Analysis: Techniques and Real-World Use Cases

Feb 3, 2026 By Fidelis Security In Fidelis Security
Cloud environments power modern business, but they also attract sophisticated malware. Attackers target cloud storage, virtual machines, and APIs to hide malicious code and steal sensitive data. This guide explains cloud malware analysis in clear terms. It covers key techniques and real examples to help security teams spot and stop these threats.
Read Post
jfrog

The AI Blind Spot Debt: The Hidden Cost Killing Your Innovation Strategy

Feb 3, 2026 By Ohad Shalev In JFrog
In today’s AI rush, I’ve seen even the most disciplined organizations find it almost impossible to apply the hard-won lessons of DevOps and DevSecOps onto AI adoption. These organizations often feel forced to choose between moving fast and staying in control. As a result, they develop a “wait and see” approach to AI usage and implementation, and it’s creating a new, more dangerous form of technical debt. I call it the AI Blind Spot Debt.
Read Post

Claude Code writes and tests Cobalt Strike detection rules #cybersecurity #ai #securityoperations

Feb 3, 2026 By LimaCharlie In LimaCharlie
Watch Claude Code generate production-ready Cobalt Strike detection rules in LimaCharlie. The agent defines detection requirements, creates rule logic for high-signal patterns, validates syntax, and deploys rules to the tenant. Named-pipe indicators and process-based signatures are tested against positive and negative controls to confirm accuracy. Security teams can operationalize threat-specific detections in minutes instead of hours.
View Video

ChatGPT Oopsies Series of Information - The 443 Podcast - Episode 356

Feb 3, 2026 By WatchGuard Technologies In WatchGuard
This week on the podcast, we cover a Politico report detailing a security lapse at CISA in the United States involving sensitive data and a public version of ChatGPT. Next, we dive into a couple of recently resolved vulnerabilities in the SolarWinds Web Help Desk application. Finally, we end with some closure on a story about two Coalfire penetration testers who were arrested several years ago for completing a penetration test in Iowa.
View Video

What Are Moltbot and Moltbook? Why the Agentic AI Frenzy Is a Security Trap

Feb 3, 2026 By SecurityScorecard In SecurityScorecard
AI agents aren’t taking over. But agentic AI without security is a real problem. Over the last few days, Moltbot and its social platform Moltbook have surged across headlines and social media. Some are calling it a glimpse of artificial general intelligence. Others say AI agents are organizing themselves. That’s not what’s happening. In this video, SecurityScorecard’s Jeremy Turner, VP of Threat Intelligence & Research, breaks down what Moltbot actually is, why this isn’t AGI, and where the real danger lives.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.