Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

armo

Kubescape Joins CNCF Incubation: A Major Milestone in Kubernetes Security

Feb 25, 2025 By Oshrat Nir In ARMO
We’re excited to announce that Kubescape has officially entered the CNCF Incubating stage! This achievement marks a huge step for the project. The 2021 idea, devised by Ben Hirschberg, ARMO CTO and Co-founder, to create a simple tool for scanning Kubernetes clusters against NSA-CISA hardening guidelines, has since developed, expanded, improved and matured. Kubescape is now a robust, full-fledged security platform, all thanks to the amazing support from the Kubescape community and CNCF.
Read Post
armo

Stay Ahead of Kubernetes Security: ARMO Platform Now Supports CIS Kubernetes Benchmark v1.10

Feb 24, 2025 By Yossi Ben Naim In ARMO
Kubernetes security is an evolving challenge, and staying compliant with industry best practices is crucial. That’s why we’re excited to announce that ARMO now supports the latest CIS Kubernetes Benchmark v1.10! Get your Kubernetes Security Checklist now.
Read Post
gitprotect

Why Immutable Backups Are Essential for Data Security in DevOps

Feb 24, 2025 By Wojciech Andryszek In GitProtect
Immutable backups (IB) are a robust defense mechanism against the consequences of cyberattacks. The latter can be considered an “evolving constant,” while DevOps environments closely link development and operations. IT teams adopt CI/CD pipelines and centralized applications utilizing multi-cloud deployment. And that usually translates into a growing attack surface (check 2024 DevOps Threats Unwrapped).
Read Post

Eliminating Shadow Access: The Hidden Dangers of SSH and API Keys

Feb 20, 2025 By Teleport In Teleport
Speakers Eliminating Shadow Access: The Hidden Dangers of SSH and API Keys Static credentials like SSH keys and API keys play a prominent role in managing modern infrastructure, automating tasks, and enabling software integration, but they also pose significant risks. These keys are often difficult to track, escape traditional monitoring tools, and can be easily exploited if stolen, leading to breaches, shadow access, and compliance issues.
View Video
teleport

Zero-Trust Access for GitHub

Feb 20, 2025 By Ben Arent In Teleport
Our journey with GitHub proxy support began with an internal challenge: securing our most critical repositories against unauthorized acess. As a company that manages infrastructure as code, including sensitive systems like Hardening Okta with Terraform, we needed an ironclad solution to lock down acess to our codebase. The problem was that traditional authentication methods like SSH keys and Personal Access Tokens (PATs) left our repositories vulnerable to unauthorized access.
Read Post
mend

Securing AI vs AI Security: What Are We Talking About?

Feb 20, 2025 By Sarah Moglia In Mend
Lately, it seems like the only thing anyone is talking about in the technology sector is Artificial Intelligence. With good reason! AI is an incredibly powerful tool that is only going to grow in usage and scope. However, there seems to be a lot of confusion around various terms involving AI and security. The focus of this blog will be breaking down the differences between securing AI, secure AI use, AI for security, and AI safety.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.