Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

arsen

Arsen Launches Smishing Simulation to Help Companies Defend Against Mobile Phishing Threats

Oct 24, 2025 By Arsen
Arsen, the cybersecurity company dedicated to helping organizations defend against social engineering, today introduced its new Smishing Simulation module: a feature designed to let companies run realistic, large-scale SMS phishing simulations across their teams. Designed to address the growing wave of mobile-based attacks, the new module gives CISOs, MSSPs, and risk officers a practical way to assess exposure and train employees to spot and respond to malicious SMS messages.
Read Post
exabeam

How Behavioural Analytics Strengthens Compliance with Australia's Protective Security Policy Framework (PSPF)

Oct 24, 2025 By Exabeam In Exabeam
The Australian Government’s Protective Security Policy Framework (PSPF) sets mandatory requirements for government entities to safeguard their people, information, and resources. As agencies rely more on digital systems, how can you meet these expectations? Behavioural analytics is designed for a today’s hybrid environments, where threats can be human or automated.
Read Post
trustcloud

Unlock powerful compliance obligations and standards your organization must meet

Oct 24, 2025 By Shweta Dhole In TrustCloud
Organizations of all sizes are finding themselves at the crossroads of innovation and regulation. As markets expand globally and technology reshapes every aspect of business operations, unlocking powerful compliance obligations and standards has never been more vital. This article explores what these obligations and standards entail, why they matter, and practical strategies you can implement to ensure your organization meets these requirements efficiently while still remaining agile.
Read Post
device authority

From Regulation to Remediation: How AI IoT Risk Management Simplifies with Trust Scores

Oct 24, 2025 By Louise José In Device Authority
As the Internet of Things (IoT) continues to expand across industries, risk management has become one of the most pressing challenges for security and compliance leaders. The convergence of AI and IoT (ai iot) is accelerating this transformation, introducing new opportunities but also creating a more complex risk landscape that requires advanced approaches to risk management.
Read Post
fidelis security

Agentless Network Monitoring: The New Standard for Cloud Security Visibility

Oct 24, 2025 By Fidelis Security In Fidelis Security
Agentless network monitoring represents a fundamental shift in cloud security strategy. Rather than installing software agents across every cloud resource, this approach leverages existing infrastructure to gather comprehensive security intelligence remotely.
Read Post
ignyte Team

ISO 27001 vs ISO 27002 Control Guidance Differences

Oct 24, 2025 By Dan Page In Ignyte
Here on the Ignyte blog, we talk a lot about ISO 27001 as a valuable international framework for information security. We also frequently touch on two related documents: ISO 27002 and Annex A. As you may know, ISO/IEC, the organization responsible for developing the various ISO standards, has a lot of different standards for a lot of different purposes.
Read Post

Decrypting Microsoft Defender for Endpoint Licensing with Ken Westin

Oct 24, 2025 By LimaCharlie In LimaCharlie
Defender Fridays - Decrypting Microsoft Defender for Endpoint Licensing with Ken Westin Join us for this week's Defender Fridays as we explore the complex world of Microsoft Defender for Endpoint licensing with Ken Westin, Senior Solutions Engineer at LimaCharlie. At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.
View Video

Agentic AI Ransomware: What You Need to Know

Oct 24, 2025 By KnowBe4 | Human Risk Management In KnowBe4
Brace yourself for agentic AI ransomware. It's a terrifying fusion of cutting-edge tech and malicious intent that's set to redefine cyber threats as we know them. Unlike traditional ransomware, which follows pre-programmed rules, agentic AI ransomware can adapt its behavior in real-time based on its environment and the defenses it encounters.
View Video
foresiet

DPDP Act India: What Businesses Must Know in 2025

Oct 24, 2025 By Foresiet In Foresiet
Data is the new currency of the digital world — and with that comes responsibility. The DPDP Act India (Digital Personal Data Protection Act), passed in 2023, is a landmark regulation designed to ensure accountability, transparency, and protection of personal data. For Chief Information Security Officers (CISOs) and compliance leaders, this law is not just another checkbox exercise — it’s a strategic mandate shaping how businesses operate in 2025.
Read Post
Arctic Wolf

Microsoft Releases Emergency Patch for Exploited Critical Remote Code Execution Vulnerability (CVE-2025-59287)

Oct 24, 2025 By Andres Ramos In Arctic Wolf
On October 23, 2025, Microsoft released an out-of-band security update for a critical vulnerability tracked as CVE-2025-59287. The flaw stems from the deserialization of untrusted data in Windows Server Update Services (WSUS), which allows remote, unauthenticated threat actors to achieve remote code execution by sending a crafted event. According to Microsoft, only Windows servers with the WSUS Server Role enabled are affected. This feature is not enabled by default.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.