Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

armo

Best Cloud Compliance Tools in 2026: From Audit-Prep to Runtime Verification

Jan 21, 2026 By Jonathan Kaftzan In ARMO
What are the three types of cloud compliance tools? Audit-prep platforms (Drata, Vanta) automate evidence collection for certifications. Security posture management/CSPM (Wiz, Prisma Cloud) scan configurations at a point in time. Runtime compliance verification (ARMO, Sysdig) monitors actual workload behavior continuously. Choosing the wrong type means solving for the wrong problem. What is compliance drift and why does it matter? The gap between your last scan and your current state.
Read Post
astra

Guide on Securing Azure Blob Storage: Best Practices and Key Features

Jan 21, 2026 By Jinson Varghese In Astra
Azure Blob Storage is an object storage solution. It stores massive amounts of unstructured data, such as text files, images, videos, etc. It supports large-scale data for applications such as backup, data lakes, and media serving. Specifically, Azure Blob Storage security prevents unauthorized access, data leakage, and potential breaches.
Read Post
datadog

Scale compliance across global frameworks with Datadog Cloud Security

Jan 20, 2026 By Christina DePinto In Datadog
Security organizations are expected to keep pace with a growing set of regulatory and industry requirements as their cloud environments grow. Yet maintaining compliance in modern, fast-moving infrastructure is increasingly difficult. Cloud resources change by the minute, teams adopt new services without centralized oversight, and evidence needed for audits is often scattered across tools and providers.
Read Post
cloudflare

How we mitigated a vulnerability in Cloudflare's ACME validation logic

Jan 19, 2026 By Hrushikesh Deshpande In Cloudflare
On October 13, 2025, security researchers from FearsOff identified and reported a vulnerability in Cloudflare's ACME (Automatic Certificate Management Environment) validation logic that disabled some of the WAF features on specific ACME-related paths. The vulnerability was reported and validated through Cloudflare’s bug bounty program. The vulnerability was rooted in how our edge network processed requests destined for the ACME HTTP-01 challenge path (/.well-known/acme-challenge/*).
Read Post
cloudflare

Astro is joining Cloudflare

Jan 16, 2026 By Fred Schott In Cloudflare
The Astro Technology Company, creators of the Astro web framework, is joining Cloudflare. Astro is the web framework for building fast, content-driven websites. Over the past few years, we’ve seen an incredibly diverse range of developers and companies use Astro to build for the web. This ranges from established brands like Porsche and IKEA, to fast-growing AI companies like Opencode and OpenAI.
Read Post

Configuration Drift: Why 99% of Cloud Failures Are Customer-Caused

Jan 16, 2026 By Reach Security In Reach Security
"Gartner estimates that 99% of cloud security failures through 2025 will be the customer's fault, primarily due to misconfigurations." Don’t become part of the statistic. Take our configuration drift product tour for a spin. Consider it some light work before the weekend. Most breaches don’t stem from cloud provider failures, but from customer-side issues like misconfigurations, weak identity controls, and unmanaged change.
View Video
indusface

CodeBreach: Critical AWS CodeBuild Misconfiguration Enabling Supply Chain Repository Takeover

Jan 16, 2026 By Aayush Vishnoi In Indusface
A critical misconfiguration in Amazon Web Services (AWS) CodeBuild could have allowed attackers to gain complete control over GitHub repositories used in AWS CI/CD pipelines, including the widely used AWS JavaScript SDK, introducing a severe software supply chain risk. This vulnerability, codenamed CodeBreach, stemmed from insufficiently restrictive CI pipeline configurations, build triggers, and webhook filters.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.