Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
Critical Vulnerability Alert: CVE-2025-40551 in SolarWinds Web Help Desk
A critical vulnerability (CVE-2025-40551) has been identified in SolarWinds Web Help Desk, a widely used IT service management platform deployed across enterprise and public sector environments to manage support tickets, assets, and internal workflows. Successful exploitation could allow an unauthenticated attacker to execute arbitrary commands on the underlying host system.
Cyber Risk in 2026: From Today's Pressures to Tomorrow's Threats
As we enter 2026, security and risk leaders are navigating a landscape that is both increasingly complex and strikingly familiar. At Bitsight, we have spent the last year listening to our customers, synthesizing insights from the field, and preparing for what lies ahead. In a recent webinar with my colleague Vanessa Jankowski, we explored the forces shaping cyber risk in the year to come.
How MSPs in Australia can strengthen SME cybersecurity with the Cyber Health Check
Small and medium enterprises (SMEs) across Australia and New Zealand are struggling to secure their operations. The threats they face are constantly growing in both number in severity, but SMEs often lack the time, resources or in‑house expertise to protect themselves. Fortunately, the Cyber Health Check from the Australian Signals Directorate (ASD) offers a simple, practical way for organisations to assess their cyber maturity and understand where they can improve cyber protection.
What happens after the attack: From cybersecurity to cyber resilience
Cybersecurity plays a critical role in preventing attacks through controls such as firewalls, endpoint protection and email security. Despite these investments, breaches still happen. According to the World Economic Forum, 87% of respondents identified AI-related vulnerabilities as the fastest-growing cyber risk in the past year.
ThreatSpike January Updates
ThreatSpike can now use JumpCloud’s Directory Insights API to pull in Login Events, which are automatically analyzed. If suspicious activity is identified, a SaaS Unusual Login incident will be raised – with our 24/7 SOC team on standby to confirm, investigate, and remediate the issue.
Introducing the AI Security Fabric: Empowering Software Builders in the Era of AI
Today, we’re thrilled to introduce the AI Security Fabric, delivered through the Snyk AI Security Platform, and operationalized through a prescriptive path for AI security. As software creation shifts to humans, models, and autonomous agents working together at machine speed, security must evolve just as fundamentally. The AI Security Fabric defines the new paradigm, and the Prescriptive Path shows how the Snyk AI Security Platform gets you there.
The Prescriptive Path to Operationalizing AI Security
In introducing the AI Security Fabric, we have outlined how security must evolve as software is built by humans, models, and autonomous agents working at machine speed. The Fabric defines the architectural shift required to build trust at AI speed, delivered through the Snyk AI Security Platform. We’re now focusing on the next question: how organizations put that vision into practice. Operationalizing AI security is not about enabling a single feature or deploying a tool.
SpiderLabs Ransomware Tracker Update January 2025: Qilin Continues as Dominant Threat Group
The January 2026 edition of LevelBlue SpiderLabs ransomware tracker noted a sharp fall in the number of attacks launched compared to December 2025. Qilin remained the top attacker, but there was a reshuffling of the remaining top five attackers for the month.
When AI Agents Create Their Own Reddit: Moltbook Highlights Security Risks in the Agentic Action Layer
A new platform, Moltbook, has attracted significant attention within the AI community. It is not famous because humans are posting there, but because autonomous AI agents are. Moltbook is a social network designed for AI agents to post, comment, upvote, and even form communities. Humans can observe these interactions but cannot participate. This experiment reveals a striking reality. AI agents are coordinating, sharing code, and developing complex cultures without human visibility.
5 Essential AI Tools for Project Managers to Boost Productivity in 2026
It's 2026, and if you're still manually color-coding spreadsheets or manually typing meeting minutes, you're stuck in the past. We are no longer "task trackers", we're "strategic navigators". But with the release of GPT-5.2 and the deluge of AI agents, it's noisy. I've seen so many PMs download 20 different AI apps and they're all the same: "generating some generic text for you". If you really want to save time, you don't need more writing tools; you need a varied toolkit that takes care of the different parts of your brain: your scheduler, your communicator, your designer, your librarian.