Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

LimaCharlie

Fingerprinting AI Attacks: Detection Every SOC Needs

Apr 23, 2026 By LimaCharlie In LimaCharlie
Revisiting a conversation between LimaCharlie co-founder Christopher Luft and Chris Cochran, Field CISO & Vice President of AI Security at SANS Institute, on The Cybersecurity Defenders Podcast. For most of cybersecurity’s history, defenders could operate under a safe assumption: somewhere on the other end of an attack, a human was making decisions. Scripts might automate parts of the kill chain, tools might accelerate execution, but a person was in the loop.
Read Post
AI Receptionists and the Expanding Attack Surface: What Security Teams Need to Know

AI Receptionists and the Expanding Attack Surface: What Security Teams Need to Know

Apr 23, 2026 By SecuritySenses In SecuritySenses
AI receptionists are quickly becoming the front line of customer interaction, handling calls, capturing data, and integrating directly with business systems. But as organizations rush to adopt AI-powered customer service, a critical question is emerging: Are we securing these systems as rigorously as we deploy them? Because every AI receptionist isn't just a convenience, it's also a new attack surface.
Read Post
Obrela's 2025 Digital Universe Report highlights shift to stealthy, identity-driven cyberattacks

Obrela's 2025 Digital Universe Report highlights shift to stealthy, identity-driven cyberattacks

Apr 21, 2026 By Obrela In Obrela
London, 21st April - Obrela has released its Digital Universe Report 2025, revealing a significant shift in the global cyber threat landscape as attackers move away from high-volume attacks toward more targeted, stealth-driven techniques focused on identity, access and persistence.
Read Post
bluevoyant

The OtterCookie Matryoshka

Apr 21, 2026 By Curt Buchanan In BlueVoyant
Over the past month, the cybersecurity community has published isolated reports detailing disparate attacks by the North Korean state-aligned threat group Shifty Corsair (also known as FAMOUS CHOLLIMA). While individual vendors have documented specific supply chain poisons or targeted spear-phishing campaigns, the Threat Fusion Cell (TFCTI) at BlueVoyant has synthesized these findings to reveal a much larger, coordinated offensive.
Read Post
foresiet

The April 2026 AI Security Report: 6 Incidents and Detailed Attack Paths

Apr 21, 2026 By foresiet In Foresiet
From AI agents leaking internal data to coordinated global malware campaigns — here is everything that happened in AI cybersecurity between April 7 and April 21, 2026, with detailed attack paths for each incident. The fifteen days following April 7, 2026 produced six distinct AI-related security incidents spanning internal data exposure, supply chain exploitation, autonomous malware generation, coordinated multi-vector attacks, model leak fallout, and documented AI agent control failures.
Read Post

Ep 39: This is your first ransomware attack, not ours

Apr 21, 2026 By Sumo Logic, Inc. In Sumo Logic
On this episode of Masters of Data, we sat down with Steven Manley, CTO of Druva, to get the unfiltered truth about ransomware: it's not a matter of if you'll be breached, but when, and bad actors are now launching hundreds of attacks at a surprisingly low cost. We dig into why attackers lurk undetected for 200-plus days, how AI is being weaponized for everything from eerily convincing voice phishing to secretly training your own AI systems against you, and why your most protected assets are rarely what gets hit first.
View Video

China-linked group targets cloud, Russian cyber espionage, agentic AI systems flaw & Nginx [313]

Apr 20, 2026 By LimaCharlie In LimaCharlie
In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community. Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows.
View Video
wallarm

Attacking the MCP Trust Boundary

Apr 20, 2026 By Wallarm In Wallarm
Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol (MCP), the fast-growing standard for connecting AI agents to external services, inherits that gap from the models it sits on top of.
Read Post
Penetration Testing as a Tool That Reveals the Real State of Cybersecurity

Penetration Testing as a Tool That Reveals the Real State of Cybersecurity

Apr 20, 2026 By SecuritySenses In SecuritySenses
Most security measures are built on the assumption that if something is configured correctly, it is secure. But there is a big difference between "configured" and "able to withstand an attack" - a gap that cannot be seen without practical testing. Penetration testing is not just another item on a compliance checklist; it is a way to get an honest and realistic answer to the question that truly matters to a business: can an attacker reach what is most important to us?
Read Post
memcyco

How to Detect Man-in-the-Middle Attacks: Indicators, Methods, and Detection Gaps

Apr 17, 2026 By Ezra M. In Memcyco
Most MITM attacks don’t announce themselves. No alerts fire, no certificates visibly break, and no users report anything unusual. By the time the interception is discovered, credentials or session tokens are already in attacker hands. Knowing how to detect man-in-the-middle attacks requires looking across multiple layers: network traffic, DNS resolution, TLS certificate integrity, and session behavior.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.