Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
Private Cloud: Your Best Resource
The dictionary (at least the online version) defines the word trend as a general direction in which something is developing or changing. It also does have a secondary definition relating to fashion, but unless we want to cover off on some questionable choices I made when younger, we can skip that one. When does something move beyond being a trend, and create a lasting shift in behavior–or for the purposes of our discussion, technology?
Cato CTRL Threat Research: PoC Attack Targeting Atlassian's Model Context Protocol (MCP) Introduces New "Living off AI" Risk
Most organizations assume a clear boundary between external users, who submit support tickets or service requests, and internal users, who handle them using privileged access. However, when an internal user triggers an AI action from a model context protocol (MCP) tool, such as summarizing a ticket, that boundary can break.
What is Code Integrity? How to Ensure Code Integrity During SDLC?
Code integrity guarantees that software code remains uncorrupted, authentic, and protected throughout the lifetime of that software. Code integrity also protects software from changes made without proper authorization for malicious attack purposes through the installation of back doors, which is a simple form of malware, initiating unauthorized updates.
Shifting from Reactive to Proactive Cybersecurity Defense Strategy
In today’s digital landscape, the importance of adopting a proactive approach to cybersecurity, which involves predictive and retrospective strategies, cannot be overstated. While traditional protective and reactive defenses remain crucial as the first line of defense, they are no longer sufficient on their own. With cyber threats becoming increasingly sophisticated and constantly evolving, organizations must augment these defenses with a proactive approach to stay ahead of potential threats.
Ransomware Attack Simulation: Did They Survive? #cybersecurity #ransomware
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
How to Integrate Cursor AI with Your GitHub Repo
How to Integrate Cursor AI with Your GitHub Repo.
Weaving Chaos - Scattered Spider's Cyberattacks Spin a Dangerous Web Across the Insurance Industry
In Q2 2025, Scattered Spider has been noted as a prolific threat actor targeting several sectors across multiple countries. As of June 2025, the group appears to have moved towards targeting the insurance sector. This is not novel victimology within the landscape, with attacks consistently targeting the sector, particularly in the extortion sphere. This blog explores the attacks Scattered Spider has conducted in 2025, as well as similar attacks around the insurance sector in the year.
Top Nine Benefits of Privileged Access Management (PAM)
Privileged Access Management (PAM) enhances your organization’s security, streamlines compliance and improves productivity. After watching this short video, you’ll know several benefits of implementing a modern PAM solution like KeeperPAM in your organization.
Examples of Personally Identifiable Information (PII)
You may not think all your personal information is very important, but cybercriminals can use it for more than you’d think. Watch this short video to learn about PII, how cybercriminals can use it against you and how to protect your PII.
Defending the Internet: how Cloudflare blocked a monumental 7.3 Tbps DDoS attack
In mid-May 2025, Cloudflare blocked the largest DDoS attack ever recorded: a staggering 7.3 terabits per second (Tbps). This comes shortly after the publication of our DDoS threat report for 2025 Q1 on April 27, 2025, where we highlighted attacks reaching 6.5 Tbps and 4.8 billion packets per second (pps). The 7.3 Tbps attack is 12% larger than our previous record and 1 Tbps greater than a recent attack reported by cyber security reporter Brian Krebs at KrebsOnSecurity.