Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

CVE-2026-20079 & CVE-2026-20131: Maximum-severity Vulnerabilities in Cisco FMC

Mar 6, 2026 By Andres Ramos In Arctic Wolf
On March 4, 2026, Cisco released fixes for two maximum-severity vulnerabilities impacting Cisco Secure Firewall Management Center (FMC), which is used to centrally manage Cisco Secure Firewall devices. Arctic Wolf has not observed threat actors exploiting these vulnerabilities, nor have any public proof-of-concept exploits been reported.
Read Post
Arctic Wolf

CVE-2026-29000: Authentication Bypass in pac4j-jwt Java Library

Mar 6, 2026 By Arctic Wolf Labs In Arctic Wolf
On March 03, 2026, pac4j released fixes for a maximum severity vulnerability in pac4j-jwt, tracked as CVE-2026-29000. The flaw arises from improper verification of cryptographic signatures in the JwtAuthenticator component when processing encrypted JWTs (JWE). A remote, unauthenticated threat actor who knows the server’s RSA public key can bypass authentication and impersonate arbitrary users (including administrators) by submitting a crafted JWE whose inner token is an unsigned PlainJWT.
Read Post
seemplicity

The Future of the Cybersecurity Workforce in an AI-Driven Era

Mar 5, 2026 By Jessica Amado In Seemplicity
New research shows the cybersecurity workforce is undergoing a major shift as AI transforms security operations. While leaders remain deeply committed to the field, many are facing increasing burnout, evolving skill demands, and growing responsibility for governing AI-driven systems. The future cybersecurity leader will need to balance technical expertise with communication, business alignment, and AI oversight.
Read Post
levelblue

LevelBlue Partners With Tenable to Deliver Expanded Vulnerability and Exposure Management Capabilities

Mar 5, 2026 By LevelBlue In LevelBlue
Periodic vulnerability scans should no longer be an acceptable standard by any security-minded organization. What is needed is the ability for MSSPs to quickly identify and prioritize risks across all client environments. To enable this capability LevelBlue has developed and rolled out LevelBlue Exposure Management for Partners. This solution delivers continuous visibility, meaningful context, and clarity around how risks could impact the business.
Read Post
nucleus

Exposure Assessment Platforms Are Here and They're a Big Part of Successful CTEM

Mar 5, 2026 By Rob Gibson In Nucleus
Gartner released its 2025 Magic Quadrant for Exposure Assessment Platforms in November 2025. The new categorization detailed in the report is something we view as a natural progression in response to the way enterprise risk has evolved over the years. It’s a move away from viewing vulnerabilities in a vacuum and looking at a more complete picture of the risk today’s enterprises face.
Read Post
armo

Four Critical RCE Vulnerabilities in n8n: What Cloud Security Teams Need to Know

Mar 5, 2026 By Ben Hirschberg In ARMO
Automation platforms sit at the center of modern infrastructure. They connect APIs, databases, CI/CD pipelines, SaaS tools, and internal systems. But when automation engines become compromised, the blast radius can be enormous. In February 2026, n8n, a widely used open-source workflow automation platform, disclosed four critical vulnerabilities that can lead to remote code execution (RCE) by authenticated users with workflow creation or editing permissions.
Read Post
The Silent Vulnerability: Why Non-Human Identities Are Now Prime for Exploitation

The Silent Vulnerability: Why Non-Human Identities Are Now Prime for Exploitation

Mar 4, 2026 By Bharath Rangamannar, SVP Engineering In Reach Security
The explosive growth of nonhuman identities (NHIs) has quietly become one of the most pressing cybersecurity challenges of the modern enterprise. Machine identities, API keys, service accounts, OAuth tokens, digital certificates, and other automated credentials now outnumber human identities by ever-growing ratios, sometimes by as much as 50 to one. However, despite their ubiquity and critical operational role, NHIs rarely receive the same level of governance or scrutiny as human-centered identities. Visibility is fragmented, controls are inconsistent, and access is often far broader than it needs to be.
Read Post

Why AI Features Don't Equal Better Vulnerability Management

Mar 4, 2026 By Nucleus Security In Nucleus
AI is becoming table stakes in vulnerability and exposure management. In this candid webinar conversation, Chris Ray, Field CTO at GigaOm, and Will Gorman, CTO and leader of AI initiatives at Nucleus Security, challenge the assumption that more AI automatically leads to better outcomes.
View Video
cato networks

Cato CTRL Threat Research: New MongoDB Vulnerability Allows Instant Remote Server Takedown (CVE-2026-25611)

Mar 4, 2026 By Vitaly Simonovich In Cato Networks
Cato CTRL’s Vitaly Simonovich (senior security researcher) has discovered a new vulnerability (CVE-2026-25611 with a “High” severity rating of 7.5 out of 10) in all MongoDB versions with compression enabled (version 3.4+, enabled by default since version 3.6), including MongoDB Atlas. The vulnerability can enable a threat actor to crash any MongoDB server. MongoDB Atlas clusters are not internet-reachable by default.
Read Post
Snyk

The 89% Problem: How LLMs Are Resurrecting the "Dormant Majority" of Open Source

Mar 4, 2026 By Noa Yaffe-Ermoza In Snyk
AI coding assistants are quietly resurrecting millions of abandoned open source packages. For the last decade, developers relied on a simple heuristic for open source security: Prevalence \= Trust. If a package was downloaded millions of times a week (lodash, react, requests), we assumed it was "safe enough" because thousands of eyes were on it. If it was obscure, we approached with caution.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.