Operations | Monitoring | ITSM | DevOps | Cloud

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Modern Communication Tools for Personal Privacy and Family Connection

A student studying abroad wants to call home without paying international rates. A traveler needs a US number to receive verification codes for banking apps. A family scattered across three cities wants to video chat together on a Sunday evening. A freelancer needs a separate number for clients without giving out their personal line. These are everyday problems. And they affect millions of people, not just large companies. Two types of communication tools solve them: virtual phone numbers and video calling apps. Both are now SaaS products designed for individual users.

Physical Security and Environmental Control in Facilities Operations

A warehouse stores goods worth millions. A server room holds critical data. A clean room needs strict air control. Keeping these facilities secure and sealed is a core operational task. Facility operations cover two related areas: physical access control and environmental integrity. One controls who gets in. One controls what gets in. Both are essential for secure, efficient operations.

The Server-Room Weak Spots Hackers Count on You Ignoring

When people think about cybersecurity, they usually picture sophisticated malware, phishing emails, or hackers exploiting software vulnerabilities. In reality, many successful attacks begin with something much simpler: overlooked weaknesses inside the organization's own infrastructure. Server rooms, network closets, and IT equipment often receive less attention than cloud security, yet they remain some of the most valuable targets for attackers.

Icinga Web 2.14, Security Releases, and Module Updates

We are shipping a new batch of Icinga Web ecosystem releases today. Icinga Web 2.14 is the headline, bringing the baseline for two-factor authentication support, configurable password policies, a configurable Content Security Policy, and a round of developer tooling improvements that have been in the works for a while. Icinga Certificate Monitoring 1.4, Icinga Reporting 1.1, and Icinga PDF Export 0.13 join it with PHP 8.5 support across the board and a set of focused improvements for each module.

Six AI agent SDKs for enterprise Kubernetes, compared

There’s a question we hear constantly from platform and engineering leaders right now, “which agent SDK should we standardize on for our Kubernetes clusters?” The honest answer is that the question is slightly wrong, and the rest of this post explains why. But it’s a fair question, so let’s compare the contenders first.

You Can't Detect What You Never Collect: Telemetry Coverage in the Agentic SOC

Every detection rule, every threat hunt, every AI agent you deploy rests on one silent assumption: that the data describing an attack actually reached your tools. When it doesn’t, nothing above it can save you, and no one gets an alert that the data was missing. Security teams invest heavily in the sharp end of the stack: detection content, threat intelligence, response playbooks, and increasingly, AI agents to triage and investigate at machine speed.

The golden path: security that works because it's the easy path

A golden path for dependency management isn't a policy document – it's a preconfigured private registry with upstream proxies covering every ecosystem your teams use, set as the default. Developers don't opt into security; they get it automatically by using the standard toolchain. The alternative is teams configuring their own controls, producing inconsistent postures and compounding risk across the org. If the secure path requires extra steps, developers will route around it. Make it the easiest option and the policy enforces itself.

Walkthrough: Puppet System Hardening Assessment

Is your infrastructure as secure as you think it is? In this walkthrough, see how aSystem Hardening Assessmenthelps organizations identify security gaps, uncover configuration risks, and prioritize remediation efforts across critical systems. You'll learn how teams can evaluate their environment against security best practices, gain visibility into potential vulnerabilities, and take actionable steps to strengthen their overall security posture.

How ITOps Can Automate Data Discovery for Rapid Privacy Request Fulfilment

For most organisations, managing data privacy compliance is traditionally viewed as a legal or governance function. However, when a Data Subject Access Request (DSAR) or Freedom of Information (FOI) application is submitted, the actual labour of retrieving that data falls squarely on IT operations. With the passing of the Privacy and Other Legislation Amendment Act 2024, Australian businesses are facing some of the most comprehensive federal privacy reforms in over a decade.