Cloud Security Archives

CONFERENCE Virtual Event Today: Threat Detection & Incident Response (TDIR) Summit - Join the Event

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Cloud Security

NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch

VMware patches flaws that expose users to data leakage, command execution and denial-of-service attacks. No temporary workarounds available.

Ryan Naraine1 day ago

Cloud Security

Orca Snaps Up Opus in Cloud Security Automation Push

Orca positioned the deal as an expansion of its capabilities into the realm of AI-based autonomous remediation and prevention.

Ryan NaraineMay 13, 2025

Cloud Security

Microsoft Warns of Attackers Exploiting Misconfigured Apache Pinot Installations

Misconfigured Apache Pinot instances can and have enabled threat actors to gain access to sensitive information.

Eduard KovacsMay 6, 2025

Cloud Security

Veza Banks $108 Million Series D at $808 Million Valuation

San Francisco identity security play Veza closes a Series D fund round led by New Enterprise Associates (NEA).

SecurityWeek NewsApril 28, 2025

Cloud Security

Cisco to Acquire Cloud Security Firm Lightspin for Reported $200 Million

Cisco is set to acquire Israel-based cloud security company Lightspin for a reported $200-250 million.

Eduard KovacsApril 3, 2023

Cloud Security

Severe Azure Vulnerability Led to Unauthenticated Remote Code Execution

A high-severity vulnerability in Azure Service Fabric Explorer could have allowed a remote, unauthenticated attacker to execute arbitrary code.

Ionut ArghireMarch 31, 2023

Cloud Security

Microsoft Cloud Vulnerability Led to Bing Search Hijacking, Exposure of Office 365 Data

An Azure Active Directory (AAD) misconfiguration leading to Bing.com compromise earned Wiz researchers a $40,000 bug bounty reward.

Ionut ArghireMarch 30, 2023

Cloud Security

CISA Ships ‘Untitled Goose Tool’ to Hunt for Microsoft Azure Cloud Infections

The U.S. government’s cybersecurity agency ships a new tool to help network defenders hunt for signs of compromise in Microsoft’s Azure and M365 cloud...

Ryan NaraineMarch 24, 2023

Cloud Security

CISA Seeks Public Opinion on Cloud Application Security Guidance

CISA this week announced it is seeking public input on draft guidance for securing cloud business applications.

Ionut ArghireMarch 16, 2023

Cloud Security

Webinar Today: Entering the Cloud Native Security Era

Join SecuityWeek and LogRhythm as we dive into security risks associated with SaaS, as well as best practices for mitigating these risks and protecting...

Mike LennonMarch 2, 2023

Cloud Security

Cisco to Acquire Valtix for Cloud Network Security Tech

Cisco announced plans to acquire Valtix, an early-stage Silicon Valley startup in the cloud network security business.

Ryan NaraineMarch 1, 2023

Cloud Security

Cloud Security Firm Wiz Raises $300 Million at $10 Billion Valuation

Cloud security company Wiz has raised $300 million in a Series D funding round that brings the total raised by the company to $900...

Eduard KovacsFebruary 27, 2023

Cloud Security

Microsoft’s Verified Publisher Status Abused in Email Theft Campaign

Microsoft and Proofpoint are warning organizations that use cloud services about a recent consent phishing attack that abused Microsoft’s ‘verified publisher’ status.

Eduard KovacsJanuary 31, 2023

Cloud Security

VMware Plugs Critical Code Execution Flaws

VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.

Ryan NaraineJanuary 24, 2023

Application Security

CSRF Vulnerability in Kudu SCM Allowed Code Execution in Azure Services

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.

Ionut ArghireJanuary 19, 2023

Application Security

Credential Leakage Fueling Rise in API Breaches

Many developers and security people admit to having experienced a breach effected through compromised API credentials.

Kevin TownsendJanuary 19, 2023

Cloud Security

Azure Services SSRF Vulnerabilities Exposed Internal Endpoints, Sensitive Data

Orca Security published details on four server-side request forgery (SSRF) vulnerabilities impacting different Azure services.

Ionut ArghireJanuary 17, 2023

Application Security

Tesla Returns as Pwn2Own Hacker Takeover Target

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Ryan NaraineJanuary 12, 2023

Application Security

Investors Bet Big on Subscription-Based Security Skills Training

Hack The Box Raises $55 Million in Funding Round Led by Carlyle

Ryan NaraineJanuary 11, 2023

Application Security

Microsoft Patch Tuesday: 97 Windows Vulns, 1 Exploited Zero-Day

Microsoft’s security patching machine hummed into overdrive Tuesday with the release of fixes for at least 97 documented software vulnerabilities, including a zero-day that’s...

Ryan NaraineJanuary 10, 2023

Cloud Security

Intel Adds TDX to Confidential Computing Portfolio With Launch of 4th Gen Xeon Processors

Intel announced on Tuesday that it has added Intel Trust Domain Extensions (TDX) to its confidential computing portfolio with the launch of its new...

Eduard KovacsJanuary 10, 2023

Application Security

Adobe Plugs Security Holes in Acrobat, Reader Software

Software maker Adobe has rolled out its first batch of security patches for 2023 with fixes for at least 29 security vulnerabilities in a...

Ryan NaraineJanuary 10, 2023

Application Security

Microsoft Flags Ransomware Problems on Apple’s macOS Platform

Security researchers at Microsoft are flagging ransomware attacks on Apple’s flagship macOS operating system, warning that financially motivated cybercriminals are abusing legitimate macOS functionalities...

Ryan NaraineJanuary 9, 2023

Cloud Security

AWS Enables Default Server-Side Encryption for S3 Objects

AWS has announced that server-side encryption (SSE-S3) is now enabled by default for all Simple Storage Service (S3) buckets.

Ionut ArghireJanuary 9, 2023

Page 10 of 87« First ‹ Previous 6 7 8 91011 12 13 14 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Cloud Security

NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch

Cloud Security

Orca Snaps Up Opus in Cloud Security Automation Push

Cloud Security

Microsoft Warns of Attackers Exploiting Misconfigured Apache Pinot Installations

Cloud Security

Veza Banks $108 Million Series D at $808 Million Valuation

Cloud Security

Cisco to Acquire Cloud Security Firm Lightspin for Reported $200 Million

Cloud Security

Severe Azure Vulnerability Led to Unauthenticated Remote Code Execution

Cloud Security

Microsoft Cloud Vulnerability Led to Bing Search Hijacking, Exposure of Office 365 Data

Cloud Security

CISA Ships ‘Untitled Goose Tool’ to Hunt for Microsoft Azure Cloud Infections

Cloud Security

CISA Seeks Public Opinion on Cloud Application Security Guidance

Cloud Security

Webinar Today: Entering the Cloud Native Security Era

Cloud Security

Cisco to Acquire Valtix for Cloud Network Security Tech

Cloud Security

Cloud Security Firm Wiz Raises $300 Million at $10 Billion Valuation

Cloud Security

Microsoft’s Verified Publisher Status Abused in Email Theft Campaign

Cloud Security

VMware Plugs Critical Code Execution Flaws

Application Security

CSRF Vulnerability in Kudu SCM Allowed Code Execution in Azure Services

Application Security

Credential Leakage Fueling Rise in API Breaches

Cloud Security

Azure Services SSRF Vulnerabilities Exposed Internal Endpoints, Sensitive Data

Application Security

Tesla Returns as Pwn2Own Hacker Takeover Target

Application Security

Investors Bet Big on Subscription-Based Security Skills Training

Application Security

Microsoft Patch Tuesday: 97 Windows Vulns, 1 Exploited Zero-Day

Cloud Security

Intel Adds TDX to Confidential Computing Portfolio With Launch of 4th Gen Xeon Processors

Application Security

Adobe Plugs Security Holes in Acrobat, Reader Software

Application Security

Microsoft Flags Ransomware Problems on Apple’s macOS Platform

Cloud Security

AWS Enables Default Server-Side Encryption for S3 Objects

Daily Briefing Newsletter

Trending

Virtual Event: Threat Detection and Incident Response Summit

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

People on the move

Expert Insights

Is AI Use in the Workplace Out of Control?

Sharing Intelligence Beyond CTI Teams, Across Wider Functions and Departments

Rising Tides: Kelley Misata on Bringing Cybersecurity to Nonprofits

Applying the OODA Loop to Solve the Shadow AI Problem

Year of the Twin Dragons: Developers Must Slay the Complexity and Security Issues of AI Coding Tools

Daily Briefing Newsletter