Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

DSPM Is a Live Map of Your SENSITIVE DATA - Not a Quarterly Scan

Jun 3, 2026 By Cyberhaven In Cyberhaven
In this video, you will learn why agentic browsers like ChatGPT Atlas, Perplexity Comet, and Arc have turned the browser into a double agent inside your enterprise, how shadow adoption is bypassing MDM and endpoint controls in days, and why indirect prompt injection creates an attack surface your file-based DLP cannot see. You will also learn how data lineage replaces noisy content inspection with origin-and-destination tracking, so you can stop the leak without blocking the tools your business depends on.
View Video
cyberhaven

AI Security for Healthcare: How to Protect PHI When Employees Use GenAI Tools

Jun 2, 2026 By Cyberhaven In Cyberhaven
Clinicians are pasting patient summaries into ChatGPT to draft discharge instructions. Billing staff are uploading claim data to AI writing tools to speed up appeals letters. Nurses are using consumer AI assistants to look up drug interactions between patient visits. None of this was approved by the security team, and most of it would surprise the compliance officer.
Read Post
cyberhaven

MCP Security: How to Secure MCP Integrations

May 29, 2026 By Cyberhaven In Cyberhaven
AI agents are connecting to enterprise systems right now. Whether a developer wired up Claude to an internal Confluence instance, a vendor shipped an agentic workflow that calls the CRM, or an employee enabled a browser-based AI assistant that reads email, Model Context Protocol (MCP) is rapidly becoming the integration layer between large language models (LLMs) and corporate data. Most security teams have no visibility into any of it.
Read Post
cyberhaven

An HR Leader's Guide to Insider Risk Management

May 28, 2026 By Cyberhaven In Cyberhaven
HR teams manage every stage of the employee lifecycle, from hiring and onboarding to performance management and offboarding. Security teams manage data access, behavioral monitoring, and incident response. Insider risk lives at the intersection of both. When HR and security operate independently, the gaps between them are exactly where data loss happens, and the moments of highest exposure are almost always HR events, such as a resignation submitted, a role change processed, a termination decision made.
Read Post

Shadow AI Is Already In Your Company - What Can You Do About It?

May 27, 2026 By Cyberhaven In Cyberhaven
In this video, you will learn why static domain-blocking strategies fail against the modern Shadow AI ecosystem, how Generative AI wrappers, browser extensions, and personal accounts bypass corporate firewalls without triggering an alert, and why network-layer inspection cannot distinguish proprietary code from public Stack Overflow snippets. We break down the limitations of traditional DLP at the clipboard layer, explain how data lineage replaces application allow-lists, and show how the "Glass House" model lets enterprises enable AI productivity while strictly gating sensitive data movement.
View Video
cyberhaven

Agentic AI Security: Governing Shadow Agents on Endpoints

May 26, 2026 By Cyberhaven In Cyberhaven
Most enterprise security programs were built around a simple assumption, not invalid assumption that data moves when a person decides to move it. AI agents have broken that model, and now act autonomously, reading files, calling APIs, executing code, and transferring data across systems without waiting for a human to approve each step. Many of these agents were never sanctioned by IT or security.
Read Post
cyberhaven

DLP for GenAI: How to Prevent Sensitive Data Leaks in AI Tools

May 25, 2026 By Cyberhaven In Cyberhaven
Employees are feeding sensitive data into AI tools at a pace most security teams did not anticipate. Source code goes into coding assistants. Customer records get pasted into ChatGPT to draft emails. Confidential contracts land in Gemini for summarization. According to Cyberhaven Labs research, 39.7% of the data employees share with AI tools is sensitive, and the volume is accelerating as AI adoption spreads from individual contributors to entire workflows.
Read Post
cyberhaven

Solving Common DSPM Challenges for Enterprises

May 22, 2026 By Cyberhaven In Cyberhaven
Most data security posture management (DSPM) programs don't fail because the technology is wrong. They fail because of execution gaps, from incomplete data inventory to misclassified data at scale to fragmented cloud environments and teams stretched too thin to act on findings. However, each of these problems is predictable, and each has a known fix.
Read Post
cyberhaven

RAG vs Agentic AI: What's the Difference and Why Does It Matter for Security?

May 22, 2026 By Cyberhaven In Cyberhaven
Security architects who understood the large language model (LLM) risk two years ago are now confronting a more complex problem. The enterprise AI stack has split into two distinct architectural patterns, retrieval-augmented generation (RAG) and agentic AI, and the security posture required for each is fundamentally different. Conflating them is how programs end up with coverage gaps.
Read Post
cyberhaven

LLM Access Controls and Audit Logging for Security Teams: A Practitioner's Guide

May 20, 2026 By Cyberhaven In Cyberhaven
Most organizations have an acceptable use policy for AI tools. Very few have controls that actually enforce it. The gap between what the policy says and what security teams can detect is where insider risk lives when it comes to large language model (LLM) usage.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.