Operations | Monitoring | ITSM | DevOps | Cloud

ivanti

Unpatchable Vulnerabilities: Key Risk Mitigation Strategies

Oct 20, 2025 By Chris Goettl In Ivanti
Wouldn’t it be great if every vulnerability had a fix waiting in the wings? If patching were always fast, easy, and complete? That’s not the world we live in. Some vulnerabilities can’t be patched at all. Others are buried in systems or services you don’t fully control. And the longer your focus stays limited to internal infrastructure, the more risk slips through the cracks.
Read Post

Breaking Down the Exposure Management Maturity Model

Oct 16, 2025 By Ivanti In Ivanti
Register for the next webinar. The Exposure Management Maturity Model is crucial for effective vulnerability management. Organizations face challenges like limited attack surface understanding and the need for better collaboration between security and IT teams. Defining a risk appetite helps prioritize vulnerabilities, while asset visibility and classification identify critical assets. The session emphasizes business-driven vulnerability prioritization and operational remediation strategies, concluding with self-assessment opportunities and the development of risk-based KPIs.
View Video
A Simple Explanation of How to Go from Vulnerability Management to CTEM Cybersecurity In 2026

A Simple Explanation of How to Go from Vulnerability Management to CTEM Cybersecurity In 2026

Oct 2, 2025 By OpsMatters In OpsMatters
Continuous Threat Exposure Management (CTEM) is a structured framework for identifying, assessing, and reducing security exposures across an organization's entire attack surface. Unlike traditional vulnerability management, which focuses on known CVEs and periodic scans, CTEM provides ongoing visibility into real-world threats and enables security teams to prioritize risks based on actual exposure.
Read Post
puppet

Cisco ASA and IOS Vulnerabilities Expose Critical Systems, Making Edge Automation Essential for Rapid Remediation

Sep 26, 2025 By Puppet In Puppet
The launch of Puppet Edge this week could not have been more timely. Within a day of its general availability, Cisco disclosed a vulnerability in its IOS and IOS XE software, followed almost immediately by an Event Response detailing two additional critical-severity CVEs affecting its firewalls.
Read Post

Understanding Linux Vulnerabilities and Their Impact

Sep 23, 2025 By Ivanti In Ivanti
Understanding Linux Vulnerabilities and Their Impact Linux vulnerabilities pose significant risks, particularly CVE 20258067, which has active exploits in rebased distributions. CVE 202332256 enables remote attackers to access sensitive information without authentication. Additionally, CVE 202558367 presents a denial of service and remote code execution risk in the Delta class. Applications handling untrusted user input to Delta need careful scrutiny, and it is crucial to keep systems updated to mitigate these threats.
View Video
ivanti

Schrödinger's Vulnerability: Why Continuous Vulnerability Management Isn't Optional

Sep 17, 2025 By Chris Goettl In Ivanti
The classic thought experiment known as Schrödinger’s Cat imagines a cat that’s simultaneously alive and dead; that is, until someone opens the box. In other words, it’s both alive and dead until the point that we can confirm the truth. Now, swap the cat for software vulnerabilities, and you’ve got a fantastic analogy for what happens in today’s security environment.
Read Post
Fighting Fire With Fire: Why Ethical Hackers Are Your Best Allies Against Cybercrime

Fighting Fire With Fire: Why Ethical Hackers Are Your Best Allies Against Cybercrime

Sep 16, 2025 By OpsMatters In OpsMatters
Cybercriminals continue to become sophisticated and greedy as they always seem to find new ways to steal sensitive data for personal and financial gain. According to data compiled by the Anti-Phishing Working Group, it was found that there were 1,003,924 phishing attacks in the first quarter of 2025, which makes phishing one of the biggest security threats to individuals and organisations. What's more, financial and online payment sectors have become the most frequent target of hackers, making up 30 percent of all attacks worldwide.
Read Post
speedscale

Simulating Multi-Agent Workflows to Find Hidden API Vulnerabilities

Sep 12, 2025 By Kristopher Sandoval In Speedscale
API gateways are often viewed as the centralized entry point for client HTTP requests in a distributed system. They act as intermediaries between clients and backend services, managing API request routing, load balancing, rate limiting, access control, and traffic shaping across multiple backend services. This API management is vital for many services and products, but many organizations can put too much stock in it.
Read Post
Understanding Pentesting Services and Their Role in Cybersecurity

Understanding Pentesting Services and Their Role in Cybersecurity

Sep 9, 2025 By OpsMatters In OpsMatters
In today's threat landscape, organizations face a constant barrage of cyberattacks targeting web applications, cloud environments, and internal networks. Security tools, monitoring systems, and compliance audits provide a first line of defense, but they often fail to capture the perspective of a determined attacker. That's where penetration testing comes in. By simulating real-world adversarial techniques, pentesting uncovers weaknesses that traditional security reviews may overlook.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.