Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
How LAPSUS$ Bypassed MFA and How to Prevent Similar Identity Attacks
LAPSUS$-linked breaches did not break multi-factor authentication (MFA) cryptographically. Attackers obtained valid authentication outcomes through techniques commonly described as MFA fatigue attacks or MFA bypass attacks, including push-prompt abuse, SIM swapping, social engineering, and session token replay. Understanding how these attacks succeed helps explain where modern identity defenses must evolve.
The Vendor Tiering Series: Mapping Tiers to Inherent Risk
Cybersecurity doesn’t really have quiet days. Usually, it’s just long stretches of constant noise before realizing you’ve been blindsided. That blindside is a flat list of unprioritized vendors. Without a way to filter what matters when a team needs to mitigate the fallout of a crisis, a vendor inventory like this becomes a compliance-only activity that offers a false sense of security.
NIS2 Documentation Requirements: Policies You Must Have
NIS2 documentation requirements form the essential foundation of regulatory compliance — defining the documented controls that underpin NIS2 audit readiness and demonstrable cybersecurity governance. Yet in 2026, the landscape is shifting: documentation alone is no longer enough.
User management, MFA, SSO, and weekly summaries are live
We’ve got a boatload of features to show off this week. We knocked out some of the most common requests, user management, single-sign on, and my personal favorite: the weekly email summary.
Why AI Features Don't Equal Better Vulnerability Management
AI is becoming table stakes in vulnerability and exposure management. In this candid webinar conversation, Chris Ray, Field CTO at GigaOm, and Will Gorman, CTO and leader of AI initiatives at Nucleus Security, challenge the assumption that more AI automatically leads to better outcomes.
How to Configure Jira OAuth/OIDC SSO Integration with Okta | Step-by-Step Guide
Manually managing user authentication in Jira can lead to security gaps and administrative overhead. By integrating Okta with Jira using the miniOrange OAuth/OIDC SSO plugin, you can provide your team with a seamless, secure, and centralized login experience. In this video, we walk you through the entire end-to-end configuration: from setting up a Web Application in the Okta Admin Console to finalizing the OAuth settings within Jira. You’ll see exactly how to map Client IDs, secrets, and endpoints to get your SSO up and running in minutes.
Embracing Real Estate Technology as a Landlord
If you are a landlord, you will know how busy things can get at times. With that said, there are things you can do to try to make things a little easier on yourself. If you want to find out more, then take a look below.
Survey Finds 45% of Cybersecurity Leaders Work a "Sixth Day" as AI Redefines Their Role
Workforce report reveals AI is expanding responsibilities, increasing burnout, and shifting cyber leadership requirements.
Microsoft Entra ID: What security teams need to know
Microsoft Entra ID controls identity across Microsoft 365, Azure, and SaaS, making it a primary target for credential theft, OAuth abuse, and session hijacking. Defenders need phishing-resistant MFA, hardened PIM, tuned Conditional Access, and SIEM-integrated identity signals. Native tools do not cover on-prem AD threats, long-term retention, or cross-platform correlation, so hybrid organizations need complementary tooling.
Integrating Cyber Risk Into Enterprise Risk Frameworks
Cyber risk management plays a foundational role in enabling business resilience. As organizations today rely more heavily on digital infrastructure than ever before, the world's cyber threats have direct implications for operational continuity and revenue stability. The ability to manage these risks proactively, therefore, determines how well a company can absorb disruption and maintain performance under pressure.