Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

armo

AI Agent Security Framework on AWS EKS: Implementation Guide

Mar 30, 2026 By Yossi Ben Naim In ARMO
You’ve enabled GuardDuty EKS Runtime Monitoring across your clusters. You’ve configured IRSA for your Bedrock-calling agents. CloudTrail is logging every bedrock:InvokeModel event. And last Tuesday, one of your AI agents exfiltrated 12,000 customer records through a sequence of API calls that every one of those tools recorded as completely normal—because at the control plane level, they were.
Read Post
armo

AI Workload Security on Azure: Evaluating Defender for Cloud Against Specialized Runtime Tools

Mar 30, 2026 By Ben Hirschberg In ARMO
Your SOC gets a Defender for Cloud alert: “Suspicious API call from AI workload pod.” You click through and find a LIST secrets call against the Kubernetes API server from a pod running your invoice-processing agent on AKS. The pod’s Workload Identity has Contributor access to your key vault. By the time your analyst opens the AKS Security Dashboard, the pod has been rescheduled.
Read Post
armo

CVE-2026-32922: Critical Privilege Escalation in OpenClaw - What Cloud Security Teams Need to Know

Mar 30, 2026 By ARMO In ARMO
The adoption of personal AI assistants is on the rise. everywhere. Developers, power users, and in a few cases, entire teams self-host them to connect messaging apps, automate tasks, and interact with AI models across their infrastructure. But when these self-hosted gateways become compromised, the blast radius can extend far beyond a single user’s chat history.
Read Post
knowbe4

Report: There Are Nearly 66 Billion Stolen Identity Records on Criminal Forums

Mar 30, 2026 By KnowBe4 Team In KnowBe4
Researchers at SpyCloud warn that the number of stolen identity records on criminal forums rose to 65.7 billion in 2025, a 23% increase from the previous year. “Phishing, malware, third-party breaches, and combo lists feed vast volumes of identity data into the industrialized criminal ecosystem,” the researchers write. “The risk extends beyond compromise – it fuels costly attacks at scale.
Read Post
knowbe4

Criminals Are Selling Stolen Tax Forms for Cheap on the Dark Web

Mar 30, 2026 By KnowBe4 Team In KnowBe4
Researchers at Malwarebytes warn that cybercriminals are peddling stolen tax documents for as low as $4 per identity, with freshly stolen forms selling for $20 each. These documents allow threat actors to conduct refund fraud, using stolen personal information to claim victims’ tax refunds.
Read Post
apono

Claude Code Auto Mode: What It Means for AI Agent Privilege Management

Mar 30, 2026 By Gabriel Avner In Apono
Anthropic’s new Claude Code Auto Mode Auto Mode is generating well-deserved attention. It introduces a classifier that sits between the developer and every tool call, reviewing each action for potentially destructive behavior before it executes. It’s a real improvement over the only previous alternative to manual approval: the –dangerously-skip-permissions flag. But the announcement is also useful for a broader reason.
Read Post

Securing OpenClaw Access So It Can't Go Rogue

Mar 30, 2026 By Teleport In Teleport
In this video, we demonstrate how to securely grant an AI agent (OpenClaw) access to Teleport-protected Kubernetes resources using Teleport Machine Identity and tbot, without exposing secrets, API keys, or long-lived tokens. You’ll see how Teleport treats AI agents as first-class identities, enforcing strict RBAC controls so the agent can only do what it’s allowed to do, like reading logs, while being blocked from sensitive actions like deleting resources or accessing secrets.
View Video
inetco

INETCO wins 2026 fraud detection and cybersecurity software award

Mar 30, 2026 By Joe Kitos In INETCO
INETCO has been named Best Online Fraud Detection & Cyber Security Software 2026 by Corporate Vision in the Canadian Business Awards. This recognition highlights the real world impact our customers are making to prevent payment fraud and strengthen cyber resiliency across global payment ecosystems.
Read Post
safeaeon

Ransomware Protection Best Practices: Leveraging MDR and EDR in the Zero Trust Era

Mar 30, 2026 By SafeAeon Inc. In SafeAeon
Ransomware attacks are on the rise. Their quiet nature is one of the main reasons why many organizations are unable to detect them. Ransomware attacks begin with something small, maybe a login at an unusual hour or a script running where it normally should not. There could be many more instances, which may not appear suspicious at first. By the time encryption begins, attackers have already moved deep into the environment.
Read Post
11:11 systems

World Backup Day: Don't Jump Without a Parachute

Mar 30, 2026 By Scott Gray In 11:11 Systems
You would never jump out of an airplane with only a single parachute. If that main canopy fails, you need a reserve ready to deploy immediately. Yet, countless organizations operate their IT infrastructure every day without a reliable safety net for their most critical asset. They plunge into the digital landscape assuming their primary data storage will never fail. March 31 is World Backup Day, which serves as a crucial reminder to pack your digital parachute.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.