Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

apono

What is the IAM Access Analyzer and 7 Tips For Using It

Mar 13, 2026 By The Apono Team In Apono
Permission creep rarely looks dangerous at first. It starts as a temporary fix, such as granting an admin role to unblock a deployment. Over time, those temporary decisions become permanent standing permissions. The result is an AWS estate littered with high-privilege roles that sit idle for months, expanding your attack surface without anyone actively noticing. It takes organizations an average of 277 days to identify and contain a breach.
Read Post
teleport

How to Apply NIST 800-53 to AI Systems

Mar 13, 2026 By Matthew Smith In Teleport
Matthew Smith is a vCISO and management consultant specializing in cybersecurity risk management and AI. Over the last 15 years, he has authored standards, guidance and best practices with ISO, NIST, and other governing bodies. Smith strives to create actionable resources for organizations seeking to minimize technological risk and increase value to customers.
Read Post
sentrium

Understanding SOC 2 Controls for SaaS Providers

Mar 13, 2026 By Adam King In Sentrium
For SaaS providers, trust is a core part of the offering. Customers rely on software platforms to process data, support business operations, and integrate with wider technology ecosystems. As a result, demonstrating effective security and governance controls using frameworks like SOC 2 has become an increasingly important requirement when selling to enterprise customers. SOC 2 has emerged as one of the most widely recognised frameworks for demonstrating product security assurance.
Read Post
Arctic Wolf

Multiple Authenticated High and Critical Vulnerabilities in Veeam Backup & Replication

Mar 13, 2026 By Andres Ramos In Arctic Wolf
On March 12, 2026, Veeam released fixes for multiple high and critical severity vulnerabilities in their Backup & Replication product that could allow remote code execution (RCE), privilege escalation, and credential theft. Arctic Wolf has not identified publicly available proof-of-concept exploits for these vulnerabilities, nor have we observed any exploitation.
Read Post
Arctic Wolf

How Artificial Intelligence (AI) Can Increase Threat Detection and Response

Mar 13, 2026 By Arctic Wolf In Arctic Wolf
Security leaders are being squeezed from both sides. On one side, threat actors are scaling operations with AI automation, using it to craft more convincing social engineering attacks, accelerating reconnaissance, and improving lateral movement. On the other side, defenders are drowning in telemetry, suffering under staffing constraints, and facing the harsh reality that threat actors don’t keep business hours.
Read Post
Arctic Wolf

Stryker Systems Disrupted in Cyber Attack; Handala Group Claims Responsibility

Mar 13, 2026 By Arctic Wolf Labs In Arctic Wolf
On March 11, 2026, U.S. medical technology company Stryker Corporation disclosed a cyber attack that disrupted its global internal networks and Microsoft systems, leaving thousands of employees unable to access corporate systems and devices inoperable. In its SEC filing, Stryker stated it has no indication of ransomware or malware, considers the incident contained, and is assessing the full impact, with no timeline provided for full restoration.
Read Post
knowbe4

Email DLP: Everything You Need to Know

Mar 13, 2026 By KnowBe4 Team In KnowBe4
Traditionally, email data loss prevention software has used static rules to stop users from emailing sensitive or confidential data. Specifically, email DLP protects organizations from accidentally exposing sensitive data such as bank account numbers, passwords, credit card numbers, intellectual property, or trade secrets.
Read Post

AppSec in the age of AI: An RSA Conference preview

Mar 13, 2026 By Wallarm In Wallarm
Application security is at a breaking point as development teams move faster than ever, aided by AI-powered coding assistants. While these tools boost productivity, they also introduce subtle errors and insecure patterns at scale. The result: a growing backlog of vulnerabilities that outpaces traditional AppSec models. This webcast examines the risks and opportunities of AI in AppSec and who will be addressing it at RSA Conference. We’ll explore how defenders can use AI to level the playing field with automated scanning, intelligent prioritization, and secure-by-design practices.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.