Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

certkit

Do you still need wildcard certificates?

Dec 22, 2025 By Todd H. Gardner In CertKit
You’ve used wildcard certificates for years. It made your life easier. Once a year you’d renew your wildcard certificate, and copy it around to all the servers. It was way too complicated and expensive to get a unique certificate for every system. But now certificate lifetimes are shrinking to 47 days by 2029 and it’s not going to work anymore. You need to automate your certificates. Soon.
Read Post
teleport

DevOps Credential Hygiene: How to Eliminate CI/CD Secrets with Teleport

Dec 22, 2025 By Meina Ghafouri In Teleport
Static credential practices — where certificates, keys, and tokens persist for months or years and are manually rotated — create systemic risk in DevOps pipelines. Rotating these secrets is time-consuming and costly. In fact, organizations may spend dozens of hours and involve multiple teams to rotate a single credential. Manual rotation quickly becomes impractical across thousands of service accounts. In this post, you will learn.
Read Post

Authenticate ggshield with GitGuardian (browser login, tokens, and api-status)

Dec 22, 2025 By GitGuardian In GitGuardian
Now that ggshield is installed, the next step is to authenticate it with GitGuardian so it can scan and talk to the API. The most common method is browser-based login: ggshield auth login This opens your browser and prompts you to sign in through the GitGuardian dashboard. It automatically generates an access token for you and stores it safely in your local configuration. By default, the token is scoped for secret scanning, which is what most people need. We’ll revisit scopes later.
View Video

How To Install ggshield on Mac, Windows, and Linux

Dec 19, 2025 By GitGuardian In GitGuardian
Install ggshield the right way for your OS and get scanning in minutes. In this video, we walk through the most common installation paths for macOS, Linux, and Windows, plus container options if that’s your workflow: macOS: install with Homebrew, or grab the standalone.pkg from the ggshield releases page (no Python required, but you’ll update manually). Linux: install via Deb/RPM packages available on Cloudsmith. Windows: install via Chocolatey, or download the standalone.zip from the releases page (no Python required, but you’ll update manually).
View Video
mend

Why AppSec and Network Risk Management Must Be Unified in the Modern Enterprise

Dec 18, 2025 By Tiffany Jennings In Mend
How Mend.io’s ServiceNow integration helps organizations manage application, network, and operational risks together—at scale. Managing AppSec and network risk as separate programs is no longer realistic for enterprise security teams. Today’s digital environments are interconnected, distributed, and constantly changing. A single misconfiguration, unpatched server, or vulnerable open-source component can become a point of exploitation when combined with weaknesses elsewhere in the stack.
Read Post
teleport

2026 Cybersecurity Predictions by Teleport CEO Ev Kontsevoy

Dec 18, 2025 By Ev Kontsevoy In Teleport
2025 was a turning point for identity security. Many professionals realized that traditional human and machine-focused identity solutions just don’t work for AI. AI is non-deterministic like a human, yet it’s still software. This creates an entirely new identity category. Traditional IAM tools would treat AI identities as yet another separate type, creating new silos.
Read Post
Creating Temperature-Zoned Swim Areas in Custom Pools

Creating Temperature-Zoned Swim Areas in Custom Pools

Dec 18, 2025 By SecuritySenses In SecuritySenses
People often imagine a pool as one uniform body of water, yet modern design has started to shift that expectation. More homeowners want their pools to adapt to the way they move throughout the day, which explains why temperature-zoned swim areas are becoming such a popular feature. Instead of choosing between a warm soak or a cool swim, you can create a layout that lets you wander between different sensations. It gives a pool a layered personality and invites people to use it in new ways.
Read Post
Keeping Backup Equipment Secure While Strengthening Digital Defenses

Keeping Backup Equipment Secure While Strengthening Digital Defenses

Dec 18, 2025 By SecuritySenses In SecuritySenses
During power outages, cyber-attack incidents, and hardware failure, backup devices allow for many systems to be operational without interruption. To ensure that a backup device operates effectively, it must be maintained in a secure location and in good condition. When backup devices are lost, exposed to environmental conditions, or unorganized, the chance of a backup device working when it is most needed is diminished significantly, which increases the risk of an organization losing access to a required digital resource.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.