Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Listen to a NotebookLM podcast version of the blog: When Anthropic announced Claude Code’s new security scanning capabilities, following the announcement of OpenAI’s Aardvark, it marked an important moment for the industry. For the first time, expert-level security review is becoming embedded directly into the act of writing code. Subtle, context-dependent vulnerabilities can now be flagged as they are created. Zero-days can potentially be remediated before they ever make it into a build.

In many organizations, there is a dangerous unspoken rule: The SOC handles endpoints and networks; Engineering handles APIs. This silo creates a massive blind spot. We recently spoke with the Senior Manager of Security Engineering at a major insurance provider, who described this exact pain point.

TL;DR Xona Platform v5.5 strengthens remote access across distributed OT environments. It introduces session resilience to maintain continuity during network interruptions, expands centralized governance for more consistent access control, and enhances support for constrained or disconnected deployments. In critical infrastructure environments, remote access is not abstract. It supports maintenance windows, emergency response, vendor coordination, and day-to-day operations across distributed sites.

1Password has achieved a significant milestone in our collaboration with Amazon Web Services (AWS): We are officially the first partner globally to successfully transact through express private offers on AWS Marketplace, a new AI-driven capability that automates personalized pricing, allowing teams to bypass manual negotiations and receive a tailored quote in minutes.

If you’ve ever read one of those “Board Reporting Templates for CISOs” articles and thought, “Ah yes, surely my board will dedicate 25 minutes to my posture dashboard and ask follow-up questions about vulnerability backlog burn-down velocity,” then I have wonderful news for you: You have not met enough boards. Most enterprise boards don’t want a security dashboard. They don’t want posture metrics.

Data Loss Prevention (DLP), also called data leakage protection, is a cybersecurity approach designed to detect, prevent, and manage unauthorized access, sharing, or transfer of sensitive information. In simple terms, DLP helps organizations keep control of critical data such as personally identifiable information (PII), financial records, credentials, and intellectual property (IP).

When it comes to protecting business-sensitive data, understanding the difference and the scope of Network DLP, Endpoint DLP, and Cloud DLP is essential. Each of these Data Loss Prevention solutions (DLP) plays a unique role in securing data across various environments, whether it is on the Network, on individual devices, or in the Cloud. Knowing how each solution works can help you determine the best approach to safeguard your organization's sensitive information.

Why do most Kubernetes security tools miss runtime threats? Most Kubernetes security tools were built to scan configurations and images, not to watch what’s actually happening in clusters. They tell you what might be wrong but can’t show what’s actually being attacked. Static scanning finds theoretical risks—a CVE exists somewhere in your container image.

What is container registry security? Container registry security is the set of practices, tools, and policies that protect container images from tampering, unauthorized access, and vulnerability exploitation. It covers four core areas: access control (who can push, pull, and delete images), vulnerability scanning (identifying known CVEs in image layers), image signing (cryptographic verification that images haven’t been modified), and content trust (ensuring images come from verified publishers).

Netwrix DSPM enhances Microsoft 365 security with unified data discovery, context-aware risk prioritization, automated remediation, and continuous compliance monitoring. While M365 provides foundational security through Purview and Entra ID, it lacks visibility into shadow data and automated risk response. Netwrix closes these gaps, helping organizations discover sensitive data, enforce least privilege, and respond faster to threats.