Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
ISO 27001 certification: Cost, process, timelines and implementation in 2025
In this article Businesses looking for serious compliance street cred often turn first to ISO 27001. ISO 27001 is a globally recognized framework that outlines and defines information security management system (ISMS) requirements. Because being ISO 27001 certified demonstrates an organization meets best practices for information security, ISO certification can give businesses a significant competitive advantage. If you’re weighing ISO 27001 vs.
5 Ways Regulatory Changes Are Shaping Data Security Strategies
Today's regulations and info edicts aren't just red tape-they're rewriting the rules of how you protect data, especially as you swim through the web. From breach reporting to global privacy laws, keeping up with compliance updates can help you walk through a smarter, faster security game for your personal and professional interests. This is why, if you're handling and managing sensitive info-or just want to avoid fines and fallout-here's how the latest legal shifts are reshaping how you can secure what matters most.
SquareX Reveals that Employees are No Longer the Weakest Link, Browser AI Agents Are
PALO ALTO, Calif., June 30, 2025 - Every security practitioner knows that employees are the weakest link in an organization, but what if this is no longer the case? SquareX's research reveals that Browser AI Agents are more likely to fall prey to cyberattacks than employees, making them the new weakest link that enterprise security teams need to look out for.
API Discovery: Uncover Hidden Endpoints Before Attackers Do
APIs are targeted 43% more often than websites and suffer 160% more DDoS attacks. Undocumented shadow APIs and zombie endpoints expose your business to breaches. In this video, learn how comprehensive API discovery reveals hidden and outdated endpoints, reduces blind spots, and helps you secure your API landscape before attackers find their way in.
Resilience Is a Team Sport
On the podcast: DORA compliance needs IT, security and business talking daily. Silos won’t cut it anymore.
Trustwave DbProtect Expands to Secure Snowflake: Strengthening AI Repository Protection
Trustwave's database protection solution, DbProtect, now supports Snowflake, which is a popular, cloud-based data warehousing platform used by organizations to power AI models and data-driven workflows. Snowflake's cloud-based architecture separates storage and compute functions, allowing organizations to scale each independently. The platform's ability to handle both structured and semi-structured data makes it a preferred choice for a broad range of AI and analytics applications.
What Is Cloud Computing? | Risks & Solutions
In this video, we are going to learn the meaning, the risk and the available solutions for Cloud computing.
Jit Joins NVIDIA Inception
Jit has joined NVIDIA Inception, a program that nurtures startups revolutionizing industries with technological advancements. At Jit, we’re on a mission to close the AppSec productivity gap with our fleet of AI Agents that empower security teams and developers to remediate product security risks at the same pace they’re introduced.
How to Achieve DDoS Defense with Real-Time Network Analysis
DDoS Defense with up-to-the-minute network analysis has become crucial as these attacks have disrupted network security for almost 20 years. The landscape changed dramatically in 2018 when the first multi-terabyte per second DDoS attacks crippled major organizations. GitHub experienced a massive 1.3TB/s attack that year, which dwarfed the previous record – a 602GB/s attack on the BBC just two years earlier.
How Does Vulnerability Scanning Support IT Asset Security?
Traditional IT environments remain vulnerable when scans are done infrequently or manually. Static scanning misses shadow IT ignores transient devices, and often overlooks systems not regularly scheduled for scans. Take the example of a remote office server that was deployed temporarily for a project. If it’s not included in regular scanning schedules, it might run unpatched and unnoticed for months—an easy target for attackers.