Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
A guide to ISO 27566-1: The new standard for age assurance systems
As global regulations requiring age-appropriate access to online content and services expand, organizations face a critical challenge: How do you effectively check a user's age without creating a frustrating experience or compromising their privacy? The International Organization for Standardization (the ISO) has provided a clear answer with its new standard, ISO 27566-1.
A comprehensive guide to KYC in Australia
If you plan to launch or expand financial services in Australia, understanding Australia's evolving Know Your Customer (KYC) and Know Your Business (KYB) requirements is critical. While the country supports innovation, its robust regulatory regime also maintains clear guardrails. Australia’s fintech and financial services markets are among the most regulated in the world with heavy penalties for noncompliance.
Unleash unstoppable resilient compliance: Strategies for success in uncertain times
Organizations across the globe are confronted with a new set of challenges, ranging from shifting regulatory requirements to the rising influence of technology and globalization. It is no longer enough to simply adhere to a list of rules; companies must now embed compliance into the very fabric of their operations to thrive.
Language Switching Attacks: The New Threat Vector in LLM Security
Language Switching Attacks: The New Threat Vector in LLM Security In this clip from "Securing AI Part 4: The Rising Threat of Hidden Attacks in Multimodal AI," Diptanshu Purwar discusses the growing trend of language-switching attacks. These techniques exploit the ongoing development and training gaps in Large Language Models (LLMs). Diptanshu explains how attackers can evade an LLM's built-in filters and guardrails by rapidly shifting between different languages, particularly less common ones, to find weaknesses where the model's safety data is sparse.
The Arrival A Mysterious New Beginning
Something unexplained has appeared inside Securonix. No sender. No clue. Just a steady glow that feels… aware. It doesn’t open. It doesn’t move. But everyone can sense it’s waiting for us to notice. The mystery begins here.
HIPAA checklist: Why your health care clients are at risk (and how to fix it)
The benefits of offering managed services to health care organizations are obvious. The problem? Health care disaster recovery (DR) creates a complex web of compliance requirements that can quickly turn profitable clients into costly liabilities. Health care data breaches average $10.93 million per incident — that's more than double the cost of breaches in other industries. For MSPs serving health care clients, disaster recovery isn't just about getting systems back online.
Understanding the golden ticket attack with Mimikatz
Golden ticket attacks target the KRBTGT account in Active Directory, allowing attackers to forge Kerberos tickets and impersonate domain admins. Tools like Mimikatz make this attack simple and long-lasting, since forged tickets can remain valid for years. Netwrix Threat Manager, Privilege Secure, and Identity Threat Detection & Response (ITDR) help detect anomalies, rotate KRBTGT credentials, and enforce Just-in-Time access to prevent compromise.
Turn AI ambition into secure operations
If you attended AWS re:Invent last year, it probably felt like there was an AI solution for everything. Models, copilots, agents; by the end, someone had to pitch an AI solution to summarize all of the other AI solutions. This year, it may still feel like the AI announcements multiply faster than the models themselves. Under all of the hype, one message still resonates: AI innovation only works when it’s built on a secure foundation.
Key learnings from the 2025 State of Cloud Security study
We have just released the 2025 State of Cloud Security study, where we analyzed the security posture of thousands of organizations using AWS, Azure, and Google Cloud. In particular, we found that: In this post, we provide key recommendations based on these findings, and we explain how you can use Datadog Cloud Security to improve your security posture.