Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

tigera

Kubernetes Operational Maturity: Secure and Resilient Cluster Federation with Cluster Mesh

May 25, 2026 By Veronika Smolik In Tigera
Practically no one runs a single Kubernetes cluster in production these days. Maybe that’s how it started but data sovereignty requirements, acquisitions, AI initiatives and the need for edge servers, among other considerations, have pulled most enterprises into multi-cluster territory whether they planned for it or not.
Read Post
teleport

How to Extend SPIFFE Beyond Kubernetes: Bring Zero Trust Identity to Your VMs

May 21, 2026 By Jeffrey Ellin In Teleport
Our previous post, How to Secure Microservices with SPIFFE and Istio, showed how to secure Kubernetes microservices using Istio policy and SPIFFE identities, with Teleport issuing the identities that the mesh trusts. The question teams face next is: How do you extend that identity-driven security model to workloads outside Kubernetes — such as VMs, edge gateways, and legacy services — without creating a massive certificate-management project?
Read Post
gitguardian

Leaked Kubernetes Secrets: Impact Assessment and Mitigation Strategies

May 20, 2026 By Guillaume Valadon In GitGuardian
A single leaked Kubernetes credential rarely stays in the cluster. It opens the registry credentials, private Docker images, and private GitHub repositories behind it. In Q1 2026 alone, our detectors caught close to 2,000 new such leaks on GitHub, 28% valid at leak time.
Read Post

AI Is Replacing Security Dashboards (Headless Cloud Security Explained)

May 6, 2026 By Sysdig In Sysdig
AI is changing cloud security—and dashboards might be next to go. In this video, we introduce headless cloud security: a new model where AI agents, not humans, operate security systems. Instead of dashboards and manual triage, security becomes API-driven, automated, and built for autonomous execution. This shift redefines DevSecOps, cloud security, and AI security workflows—moving humans from operators to orchestrators.
View Video
DevOps Services: What They Are, How They Work, and Why Your Business Needs Them

DevOps Services: What They Are, How They Work, and Why Your Business Needs Them

Apr 28, 2026 By SecuritySenses In SecuritySenses
The way businesses build and deliver software has changed dramatically over the past decade. Gone are the days when development teams would work in isolation for months before handing off a product to operations staff for deployment. Today's competitive market demands speed, reliability, and continuous improvement - and that is exactly what DevOps services are designed to deliver.
Read Post

How Hackers Get In: What Is a Vulnerability? (Containers Explained)

Apr 24, 2026 By Sysdig In Sysdig
A vulnerability is a weakness in software—and in containerized environments, even one small flaw can open the door. From buggy code to outdated images and misconfigurations, risk can exist at every layer of the stack. And if a vulnerability is already known… attackers often already know how to exploit it. In this video, we break down: Next up: What is a CVE?
View Video
armo

How Healthcare Platform Teams Should Secure AI Agents on Kubernetes

Apr 23, 2026 By Shauli Rozen In ARMO
The surgeon is thirty-two minutes into a procedure. The ambient scribe pod listening to the operating room is mid-encounter — transcribing, retrieving prior chart context, drafting the operative note for post-op sign-off. At the same moment, your SOC gets an alert: anomalous tool invocation from that pod, elevated egress volume, behavioral deviation from the agent’s baseline.
Read Post

Autonomous AI Agents Explained: Risks, Capabilities & Security Gaps

Apr 17, 2026 By Sysdig In Sysdig
Autonomous AI agents are no longer experimental—they’re writing code, executing commands, and making decisions in real time. But as AI coding agents become more powerful, they’re also introducing a new and often invisible attack surface. In this video, we break down: AI agents can install packages, run scripts, and modify systems instantly—often without traditional visibility. That means security teams need to rethink how they monitor and protect their environments.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.