Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Elastic Security Explained: Transparency, AI, and the Future of Threat Hunting

Oct 2, 2025 By Elastic In Elastic
Elastic’s James Spiteri joins John Hammond to dive deep into the evolution of Elastic Security, from the ELK stack’s early days to today’s full-fledged, unified SIEM, XDR, and cloud security solution powered by agentic AI and automation. They discuss free tools, open detections, and how Elastic is making cybersecurity more accessible and collaborative for everyone.
View Video
levelblue

SpiderLabs Ransomware Tracker Update September 2025: Qilin, Akira Top Ransomware Attackers

Oct 2, 2025 By Doug Olenick In LevelBlue
The threat groups Qilin and Akira together conducted about one-quarter of the 402 ransomware attacks tracked by Trustwave SpiderLabs in September, with the manufacturing and technology sectors receiving the brunt of these efforts. This information was derived from a new SpiderLabs ransomware tracking tool that gathers information from a variety of open intelligence sources and our own proprietary research.
Read Post
Torq

GigaOm Names Torq Leader in SecOps Automation

Oct 2, 2025 By Bob Boyle In Torq
The 2025 GigaOm Radar Report for SecOps Automation has named Torq a Leader and Fast Mover. The category’s shift this year away from SOAR to SecOps Automation confirms what SOC leaders already know, and Torq has been saying for years: Legacy SOAR is done. Too rigid, too slow, and too fragile, SOAR can’t keep up with today’s adversaries.
Read Post
Trustwave

LevelBlue Managed WAAP Enables Organizations to Solve Day 1 WAAP Implementation Challenges

Oct 2, 2025 By Trustwave In Trustwave
Deploying Web Application and API Protection (WAAP) systems is crucial for bolstering cybersecurity defenses. Akamai reported 108 billion API attacks over an 18-month period, underscoring the value of APIs to cybercriminals. Like any new security measure, the initial deployment brings various challenges during the "Day One" process. These Day One challenges should not compromise security effectiveness or disrupt business operations.
Read Post
sumologic

Ten modern SIEM use cases at cloud scale

Oct 2, 2025 By Sridhar Karnam In Sumo Logic
The role of SIEM has never gone away. From the beginning, it’s been the backbone of security operations: the system where logs converge, alerts are analyzed, and incidents are investigated. What’s changed is our ability to use it correctly. Legacy, traditional SIEM tools forced trade-offs. Teams filtered data at ingest, dropped logs to control costs, or siloed analytics into disconnected point tools. The result was a SIEM that felt heavy, reactive, and underwhelming.
Read Post
CTEM Solutions Explained How to Build a Stack

CTEM Solutions Explained How to Build a Stack

Oct 2, 2025 By SecuritySenses In SecuritySenses
Vulnerability numbers are spiraling. Compliance checklists and point scans cannot keep pace. Continuous Threat Exposure Management (CTEM) provides security leaders with a practical approach to identify and mitigate real attack paths in real-time. This article explains what CTEM is, the solutions that enable it, and how to build a stack that actually shrinks exposure instead of counting it. CTEM solves the eternal problem of vulnerability management (too many vulnerabilities to ever fix) with a continuous program to find, validate, and reduce exposures before adversaries can use them.
Read Post
Forward Networks Appoints Sanjay Mehta as CMO to Drive Global Adoption of Its Industry-First Network Digital Twin

Forward Networks Appoints Sanjay Mehta as CMO to Drive Global Adoption of Its Industry-First Network Digital Twin

Oct 1, 2025 By Forward Networks In Forward Networks
Seasoned enterprise marketing leader to accelerate global awareness and adoption of Forward Networks' pioneering digital twin technology as enterprises face AI-driven infrastructure pressures.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.