Category: Cloud security

Application security, Cloud security

PureSec Emerges From Stealth With Security Product for Serverless Apps

January 17, 2018

Via: Security Week

Tel Aviv, Israel-based startup PureSec emerged from stealth mode on Wednesday with a security platform designed for serverless architectures and a guide that describes the top 10 risks for serverless applications. Founded by Shaked Zin (CEO), Avi Shulman (VP of […]

Cloud security, Phishing

Six Major Data Breach Trends From 2017

January 9, 2018

Via: Security Intelligence

It seems like the moment the security industry collectively comes to grips with the latest publicly disclosed data breach, another bigger and badder security incident surfaces to shake it up, prompting many enterprises to worry if the same could happen […]

Cloud security, Network security

3 Things That Will Keep CIOs Up At Night in 2018

December 29, 2017

Via: Aberdeen Essentials

As IT leaders around the world pursue year-end activities, finalize growth targets, align completed tasks with strategic goals and close new tech purchases, they may be forgiven for developing sleep disorders. Disruption in the way modern organizations consume technology is […]

Cloud security, Cyber-crime, Data loss

Five mental shifts we must make to achieve security beyond perimeters

December 20, 2017

Via: Help Net Security

Data centers aren’t exactly going extinct, but given the massive shift to public clouds, you need to make some significant adjustments if your mindset doesn’t already include or understand the cloud. The problem is that not every organization knows how […]

Cloud security, Vulnerabilities

Permissions Flaw Found Azure AD Connect

December 14, 2017

Via: Threat Post

A permissions flaw in Microsoft’s Azure AD Connect software could allow a rogue admin to escalate account privileges and gain unauthorized universal access within a company’s internal network. Microsoft issued an advisory for the vulnerability on Tuesday. Affected are Office […]

Cloud security

Oracle Product Rollout Underscores Need for Trust in the Cloud

December 12, 2017

Via: Dark Reading

Oracle updates its Identity SOC and management cloud with security tools to verify and manage users trusted with access to cloud-based data and applications. Oracle is expanding its Identity SOC portfolio and Management Cloud with new cloud-based tools for identity […]

Cloud security, Vulnerabilities

Cisco Patches Critical Playback Bugs in WebEx Players

December 1, 2017

Via: Threat Post

Cisco Systems issued a Critical alert on Wednesday warning of multiple vulnerabilities in its popular WebEx player. Six bugs were listed in the security advisory, each of them relating to holes in Cisco WebEx Network Recording Player for Advanced Recording […]

Cloud security

McAfee Looks to Cloud with Skyhigh Acquisition

November 28, 2017

Via: Dark Reading

McAfee agrees to buy CASB provider Skyhigh Networks, demonstrating a strong focus on cloud security. McAfee plans to acquire cloud access security broker (CASB) provider Skyhigh Networks, the company announced today. The move is intended to expand McAfee’s portfolio and […]

Cloud security

SAML Post-Intrusion Attack Mirrors ‘Golden Ticket’

November 27, 2017

Via: Threat Post

Researchers at CyberArk Labs have created a post-intrusion attack technique known as a Golden SAML that could allow an attacker to fake enterprise user identities and forge authentication to gain access to valuable cloud resources in a federation environment. “Using […]

Cloud security

Amazon Promises Fix to Stop Key Service Hack

November 20, 2017

Via: Threat Post

Researchers at Rhino Security Labs identified a flaw in Amazon’s Key delivery service and Cloud Cam security camera that allows a rogue courier to tamper with the camera and knock it offline, making it appear no one is entering home, […]