Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
Crowdsourced Penetration Testing: Understanding the Risks for Better Decision-Making
Crowdsourced penetration testing promises broad coverage, flexible resourcing, and cost efficiency by tapping into a distributed pool of security testers. Trustwave, A LevelBlue Company, realizes that not every organization has the financial resources to partner with a security firm with dedicated penetration testing capabilities. At the same time, we want to make organizations aware of the many pitfalls in the crowdsourced pen-testing market and offer a few pointers on choosing the right vendors.
How Much Does a Cyber Security Company Cost?
The cost of hiring an outsourced cyber security company can start from as little as £500 per month, or £10,000 or higher for large companies. For global multi nationals, it wouldn’t be unreasonable to spend millions on cyber security and to protect yourself against an attack of data breach. Companies have the option to use ongoing monthly services to detect potential threats, or the opportunity to do one-off tests to check for vulnerabilities such as penetration testing or red teaming.
Intelligent workflows: SAP's approach to SOAR in the AI era
Join SAP’s CISO and Tines’ Co-founder for a conversation on how SAP is modernizing its SOAR workflows and building an AI SOC capability with Tines. As SAP scales its global enterprise cloud services, the security team is taking a new approach to workflow automation: combining deterministic playbooks with intelligent, AI-assisted workflows that improve speed, accuracy, and visibility across security operations.
From Blind Spots to Resilience: Why Visibility Is the Foundation of OT Security
In today’s industrial environments, the single biggest barrier to securing operations is not technology, not budget, not even talent–it’s visibility. You cannot protect what you cannot see. In Operational Technology (OT), visibility has two dimensions: Without this combined view, organizations are left guessing where their crown jewels sit, how traffic flows across the environment and where vulnerabilities or attack paths may hide.
Off the Blocks | Ep. 4: What Stage Are We In With Stablecoin Adoption?
We asked industry leaders a simple but powerful question: What stage of the game are we in when it comes to stablecoin adoption? In this finale of Off the Blocks, our guests share sharp, honest perspectives on the evolution of stablecoins and the infrastructure surrounding them. From pilot projects to real-world utility Institutional use cases fueling global settlement Regulatory clarity driving momentum What’s still missing for mass adoption.
When AI writes code, who fixes the flaws?
Veracode's Chief Security Evangelist Chris Wysopal on AI's Coding Secret: 45% of Code Has Vulnerabilities Chris (aka @WeldPond), Wysopal, a veteran in application security and former member of the legendary L0pht hacker group, shares practical insights on shifting security left while embracing AI-powered development. Whether you're a CISO, AppSec leader, or developer using Copilot/GitHub Copilot, Claude, or other AI coding assistants, this discussion will change how you think about secure AI adoption.
What's new in 1Password Enterprise Password Manager - Q4, 2025
IT and security leaders share a common goal: to empower teams to move fast without compromising security.
Django Vulnerabilities Expose Apps to SQL Injection & DoS Attacks
The Django Software Foundation has released critical security fixes for CVE-2025-64459 (SQL Injection) and CVE-2025-64458 (Denial of Service) vulnerabilities. These vulnerabilities affect query construction and redirect handling in Django, putting applications and data at risk. See how AI-powered AppTrana stops these attacks from Day 0.
FedRAMP Penetration Testing Companies: Complete Buyer's Guide & Top Providers (2025)
With the arrival of cloud-conscious threat actors that are falling head over heels for LLM jacking and valid account abuse as cloud intrusions rose over 26% in 2024 vs 2023, being a Cloud Service Provider (CSP) you know that FedRAMP authorization is no longer about achieving a said compliance, you need to walk the extra mile to make sure you survive the ruthless competition in this space.
Insider Threats in the Age of AI: What Security Teams Need to Know
Artificial intelligence has gone from buzzword to business tool almost overnight. Employees are rapidly adopting platforms like ChatGPT, Gemini, and Copilot to draft content, analyze data, brainstorm code, and accelerate productivity. But as AI becomes embedded in everyday workflows, a new category of insider threat is emerging—one that is harder to detect, harder to classify, and potentially more damaging than anything security teams have faced before.