Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Snyk

From Code to Agents: Proactively Securing AI-Native Apps with Cursor and Snyk

Dec 22, 2025 By Manoj Nair In Snyk
The rapid adoption of AI agents for development is creating a critical security gap. We are moving from predictable logic, deterministic code paths, and human-driven workflows to non-deterministic agents that reason, plan, and act autonomously using large language models across the broader software development lifecycle. As enterprises adopt these autonomous AI agents, the core challenge isn’t just the new risks and attack vectors; it’s a loss of runtime control.
Read Post
protecto

The Hidden Costs of Building Your Own Data Masking tool

Dec 22, 2025 By Anwita In Protecto
Building an in-house data masking tool often starts as a practical decision. The logic feels sound. Your team understands the data, knows the systems, and can tailor masking logic exactly to your needs. On the surface, it looks like a short engineering project that saves licensing costs and avoids external dependencies. What we’ve learned, after observing many organizations take this path, is that the hidden costs of building your own data masking solution rarely appear during the initial build.
Read Post
protecto

Why Preserving Data Structure Matters in De-Identification APIs

Dec 22, 2025 By Amar Kanagaraj In Protecto
When it comes to data masking or de-identification, one often-overlooked detail is the importance of preserving the original data structure. While it might seem harmless to normalize extra spaces or convert unique newline characters into a standard format, these subtle changes can actually have a significant impact on downstream processing. Let’s explore why this matters, with a couple of concrete examples.
Read Post
vista infosec

Expert Roundup -How to Prepare for AI Data Processing Under GDPR?

Dec 22, 2025 By Narendra Sahoo In VISTA InfoSec
As AI adoption accelerates across business functions, December’s expert roundup focuses on a question many organizations are now confronting in practice rather than theory: how should companies prepare for AI related data processing under GDPR. Unlike traditional automation, AI systems often rely on large, dynamic datasets, continuous learning, and opaque decision logic.
Read Post

Why Knowing ATT&CK Isn't Enough: Mapping Real Control Coverage with Reach

Dec 22, 2025 By Reach Security In Reach Security
Security teams know the attack techniques. What they don’t always know is how those techniques actually land in their environment. Reach maps your existing controls to MITRE ATT&CK (and D3FEND) and shows—visually—︎ which techniques are covered︎ which tools provide that coverage︎ and where real gaps exist Because “we have the tool” isn’t the same as “the technique is stopped.”
View Video

Garrett Hamilton & Todd Graham on How AI Agents Change the Way We Think About Security

Dec 22, 2025 By Reach Security In Reach Security
Garrett Hamilton, CEO and Co-Founder of Reach Security, sits down with Todd Graham, Managing Partner at Microsoft’s venture fund M12, to discuss why modern cybersecurity programs struggle to reduce real risk — despite massive spending on tools. Recorded at Black Hat, the conversation explores how misconfigurations, unused controls, and operational blind spots create exposure long before attackers need advanced techniques.
View Video
Zenity

Zenity 2025 Year in Review: Building AI Security for the Enterprise

Dec 22, 2025 By Greg Zemlin In Zenity
For security teams, the adoption of agents showed up operationally before it showed up strategically - creating new expectations and requirements. Risk is no longer tied to prompts or the model alone. It shows up in what agents do once they are connected to critical systems - coming from permissions they inherit, tools they invoke, and data they move.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.