Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
Mythos, MOAK, CTEM and the End of CVE Chasing
A few weeks ago the world was exposed to Mythos, Anthropic's new frontier model and the Project Glasswing announcement that came with it. The reaction across the industry was immediate. Cybersecurity stocks fell sharply. The Treasury Secretary convened an emergency meeting with major bank CEOs. 250 CISOs produced a response playbook over a single weekend. That is not a typical announcement or a PR "leak". That is a reckoning. Then, about a week later, I came across MOAK.
How to Build a Security Compliance Audit Process that Works All Year Round
Security compliance audits can feel intimidating, especially if your team has never been through one before. For many organizations, an audit feels like a high-pressure project with a hard deadline, a long list of evidence requests, and a lot of manual work spread across security, IT, legal, and compliance teams. For vendors and companies in highly regulated industries, audits and risk assessments may already be a routine part of doing business.
Configure Drift Breach Repeat
A new research report from Reach Security reveals that misconfigured security controls, configuration drift, and unused capabilities across an organization’s existing security technology stack are a primary driver of cybersecurity risk.
GitProtect 2.2.0: GitHub Enterprise Cloud with Data Residency Backups, AES-GCM Encryption, and More
The huge news is coming: GitProtect is the first solution on the market to support the backup of the GitHub Enterprise Cloud with Data Residency environments. The launch of version 2.2.0 also brings more secure and efficient AES-GCM encryption, a refreshed dashboard, a new onboarding experience, support for Azure DevOps related work links, and much more. Let’s dive into all the new features.
How to Make AI Security Foundational to Your Data Security Stack
Most organizations treat AI security as a finishing touch: A policy written after an incident or a product category evaluated after the core stack is already in place. That sequencing is the problem. AI has fundamentally changed how sensitive data moves inside an organization, through prompts, agents, summarization tools, and third-party models that operate entirely outside traditional security perimeters.
Trilio Becomes a Red Hat Premier Partner: A Milestone in Cloud-Native Data Protection
In the rapidly evolving landscape of cloud-native infrastructure, collaboration is the engine of innovation. Today, we are thrilled to share a major milestone in our journey: Trilio has officially achieved Premier Partner status within the Red Hat partner ecosystem. This elevation isn’t just a badge of honor; it is a testament to years of deep technical integration and a shared vision for the future of the open hybrid cloud.
What's Actually Changing in HIPAA (and What IT Teams Need to Fix Now)
Hosted by CalCom — helping healthcare and financial organizations secure and harden server environments for compliance frameworks like HIPAA, CIS, and NIST. Trusted by organizations managing regulated environments where configuration security and audit readiness matter. A HIPAA Auditor won't tell your servers to turn their head an cough, but your configurations may still not be healthy. Some security practices that used to be “recommended” are quickly becoming expected controls. This session breaks down what’s changing, what auditors will look for, and what you should address now.
The Moment It Clicks
There’s a moment in every Teleport demo where the customer lights up. They see session replay, Kubernetes playback, the scope of what’s possible — and something clicks. Gus Luxton on why that reaction never gets old.
What SEC/FINRA Compliance Looks Like Now
Regulators don’t just want login logs anymore. They want immutable proof of every action and full session recordings. Steven Martin on how Teleport delivers that — and how AI-powered session summaries are changing what audit actually looks like.
How Financial Services Teams Should Secure AI Agents in 2026
Your fraud detection agent scores 30,000 transactions per hour. Your KYC agent processes identity verifications against government watchlists. Your customer service chatbot resolves disputes and initiates balance transfers. Each agent runs on Kubernetes with inherited service account permissions that span payment APIs, customer databases, and compliance systems. Now imagine one of those agents is compromised through a prompt injection embedded in a customer support ticket.