Top

Category: Cloud security


Cloud security

Data Pours from Cloud—And ‘The Enemy is Us’

November 6, 2017

Via: Threat Post

Accenture, Verizon, Dow Jones and Deep Root Analytics are just the tip of the iceberg when it comes to the millions of private records and sensitive enterprise data exposed on cloud backends this year. And the problem is getting worse […]


Cloud security, Vulnerabilities

WordPress Delivers Second Patch For SQL Injection Bug

November 2, 2017

Via: Threat Post

A bug exploitable in WordPress 4.8.2 and earlier creates unexpected and unsafe conditions ripe for a SQL injection attack, exposing sites created on the content management system to takeover. WordPress released WordPress 4.8.3 Tuesday, which mitigates the vulnerability. “This is […]


Cloud security

Security Forecast: Cloudy with Low Data Visibility

October 30, 2017

Via: Dark Reading

Businesses are moving more sensitive data to the cloud but struggle to monitor and manage it once it’s there. A need for greater flexibility, speed, and convenience is driving more businesses to the cloud. Less than 25% had their applications, […]


Cloud security

Oracle Patches 250 Bugs in Quarterly Critical Patch Update

October 18, 2017

Via: Threat Post

Oracle patched 250 vulnerabilities across hundreds of different products as part of its quarterly Critical Patch Update released today. Rounding out the list of products with the most patches is Oracle Fusion Middleware with 38, Oracle Hospitality Applications with 37 […]


Cloud security, Network security

Centralized security in the cloud is the best security model

October 13, 2017

Via: InfoWorld

It’s 6:00 a.m. on a Monday morning. You get an automated text from your security systems that a DDOS attack was attempted, but new security policies downloaded several hours earlier proactively protected the systems from the attacking IP address. All […]


Cloud security

Accenture Exposed Data via Unprotected Cloud Storage Bucket

October 11, 2017

Via: Security Week

Consulting and technology services giant Accenture inadvertently exposed potentially sensitive information by leaving it unprotected in four Amazon Web Services (AWS) S3 buckets. The cloud storage containers were discovered on September 17 by Chris Vickery of cyber resilience company UpGuard […]


Cloud security

Shadow cloud apps pose unseen risks

October 10, 2017

Via: CSO Online

It happens in every company. Employees find a cool new online service that makes them more productive. They create free or low-cost accounts on devices they use for work, and get all their friends and colleagues to join up. The […]


Cloud security

Google Updates Cloud Access Management Policies

October 4, 2017

Via: Dark Reading

Custom roles for Cloud Identity and Access Management will give users full control of 1,287 public permissions in the Google Cloud. Google today released a beta version of custom roles for Cloud Identity and Access Management (IAM) on the Google […]


Cloud security

Many Companies Unprepared for DNS Attacks: Survey

October 3, 2017

Via: Security Week

Many companies are not prepared to deal with DNS attacks, and a quarter of the ones that have already been hit reported significant losses, according to a survey conducted by Dimensional Research on behalf of network security firm Infoblox. Attacks […]


Cloud security

Companies Push to Decode Cloud Encryption

September 28, 2017

Via: Dark Reading

Businesses buckle down on encryption as it becomes table stakes for securing data in the cloud. Encryption has become less of a nice-to-have and more of a must-have as companies determine how to best protect their cloud-based data. Cloud providers […]