Top

Tag: Cloud


Cloud security, Security

Break-in at ‘third-party cloud platform’ leaked 110M customer records, says AT&T

July 12, 2024

Via: The Register

AT&T has admitted that cyberattackers grabbed a load of its data for the second time this year, and if you think the first haul was big you haven’t seen anything: This one includes data on “nearly all” AT&T wireless customers […]


Access control, Security

Snowflake tells customers to enable MFA as investigations continue

June 10, 2024

Via: The Register

Cloud data analytics platform Snowflake said it is going to begin forcing customers to implement multi-factor authentication to prevent more intrusions. The move comes in response to an incident discovered late last month by analysts at Hudson Rock, which saw […]


Cloud security, Security

Harness the power of security automation

February 21, 2024

Via: The Register

The complexity facing businesses as they make the necessary transition to cloud-native applications and multi-cloud architectures keeps cloud teams firmly on the frontline when it comes to implementing security policies. The constant risks of misconfiguration and malicious attack demand that […]


Access control, Security

A Question of Identity: The Evolution of Identity & Access Management

February 9, 2024

Via: SecureWorld

The cloud is the de facto platform for delivery of applications and services in the modern digital era. Identity as the new digital perimeter is the cornerstone for assuring secure “Anytime, Anywhere, Authorized” access to protect enterprise security and privacy. […]


Threats & Malware, Vulnerabilities

JetBrains urges swift patching of latest critical TeamCity flaw

February 7, 2024

Via: The Register

JetBrains is encouraging all users of TeamCity (on-prem) to upgrade to the latest version following the disclosure of a critical vulnerability in the CI/CD tool. Tracked as CVE-2024-23917, the vulnerability has been assigned a provisional 9.8 CVSS score and allows […]


Application security, Security

Managing the hidden risks of shadow APIs

February 2, 2024

Via: The Register

Application programming interfaces (APIs) play a significant role in today’s digital economy, but at the same time they can also represent a data security vulnerability. While APIs serve as building blocks to modern app development, their proliferation and sprawl have […]


Cloud security, Security

Enter the era of platform-based cloud security

January 18, 2024

Via: The Register

Reports suggest that forward-looking organisations are ditching legacy point-based cloud security offerings and replacing them with more efficient integrated platforms which slash management overheads while significantly improving the app security. Cybersecurity Insiders notes that, in the past, companies have typically […]


Network security, Security

Inside the Complex Universe of Cybersecurity

January 11, 2024

Via: SecureWorld

Arun DeSouza is an award-winning thought leader with more than two decades of experience in global security leadership and organizational transformation. Working as CISO, DeSouza’s areas of expertise include strategic planning, risk management, identity management, cloud computing, and privacy. DeSouza […]


Data loss, Threats & Malware

Nearly a million non-profit donors’ details left exposed in unsecured database

December 13, 2023

Via: The Register

Close to a million records containing personally identifiable information belonging to donors that sent money to non-profits were found exposed in an online database. The database is owned and operated by DonorView – provider of a cloud-based fundraising platform used […]


Cloud security, Security

Learning the safety language of the cloud

December 13, 2023

Via: The Register

In China, clouds are a symbol of luck. See multiple layering of clouds in a blue sky can mean you are in line to receive eternal happiness. If only that was true in the complex world of IT, where multi-cloud […]


Hacker, Threats & Malware

Cloud engineer wreaks havoc on bank network after getting fired

December 12, 2023

Via: The Register

An ex-First Republic Bank cloud engineer was sentenced to two years in prison for causing more than $220,000 in damage to his former employer’s computer network after allegedly using his company-issued laptop to watch pornography. Miklos Daniel Brody, 38, of […]


Cloud security, Security

Read the clouds, reduce the cyber risk

December 11, 2023

Via: The Register

In the natural world, there are ten different kinds of cloud – a rare simplicity in meteorological terms. But in our global business environment, there’s no single defining feature to aid classification. Multi-cloud environments in particular spawn a lot of […]


Cloud security, Security

Australia building ‘top secret’ cloud to catch up and link with US, UK intel orgs

December 7, 2023

Via: The Register

Australia is building a top-secret cloud to host intelligence data and share it with the US and UK, which have their own clouds built for the same purpose. The three clouds were discussed on Monday by Andrew Shearer, Australia’s director-general […]


Cyber-crime, Malware

Rackspace racks up $12M bill in ransomware raid recovery

November 16, 2023

Via: The Register

Rackspace’s costs from last year’s ransomware infection continue to mount: the cloud hosting biz told America’s financial watchdog, the SEC, its total expenses to date regarding that cyberattack have reached $12 million – so far. The extortionware raid on the […]


Threats & Malware, Vulnerabilities

VMware disclosed a critical and unpatched authentication bypass flaw in VMware Cloud Director Appliance

November 15, 2023

Via: Security Affairs

VMware disclosed an authentication bypass vulnerability, tracked as CVE-2023-34060 (CVSS score 9.8), in its Cloud Director Appliance that can be exploited by an attacker with network access to the appliance bypassing login restrictions when authenticating on port 22 (ssh) or […]


Threats & Malware, Vulnerabilities

Microsoft 365 apps have a lot of new security vulnerabilities – here’s what we know

November 6, 2023

Via: TechRadar

Cybersecurity researchers from Zscaler have discovered more than a hundred vulnerabilities in Microsoft 365 that were introduced with the addition of SketchUp into the cloud productivity suite. To make matters worse, they claim to have managed to bypass the patches […]


Cloud security, Security

Oracle Enables MFA by Default on Oracle Cloud

November 3, 2023

Via: Dark Reading

Oracle now requires multifactor authentication on all instances within its cloud environment, Oracle Cloud Infrastructure. Every new tenancy is created with MFA enabled by default for cloud administrators, Oracle said. The company also “seeded” all preexisting systems to have a […]


Cloud security, Security

Considerations for Managing Digital Sovereignty: The Executive Perspective

November 3, 2023

Via: Dark Reading

Businesses value the availability, scalability, and reliability of the cloud. They recognize that cloud computing can enable data to flow freely to where it needs to be accessed and processed, providing a huge advantage for organizations that operate on a […]


Application security, Security

Redefining united data protection

October 23, 2023

Via: The Register

There is no longer an off button for businesses and organizations, no closed signs, or downtime. This means enterprise IT operations and data assets must be protected round the clock in all operating environments. In the past this has often […]


Cloud security, Security

Cloud changes are to blame for nearly all cyber-attacks

September 18, 2023

Via: TechRadar

Of all the vulnerabilities an organization’s system has, the majority sit within its cloud environment, a new report from cybersecurity researchers Unit 42, part of Palo Alto Networks, has found. As per the report, four in five (80%) of all […]