Cloud Security Two New Vulnerabilities Could Affect 40% of Ubuntu Cloud Workloads Researchers discovered two vulnerabilities in the Ubuntu OverlayFS module: CVE-2023-2640 and CVE-2023-32629 (together dubbed ‘GameOver(lay)’). Kevin TownsendJuly 27, 2023
Cloud Security Wiz Says 62% of AWS Environments Exposed to Zenbleed Exploitation Researchers say a whopping 62 percent of AWS environments may be exposed to the newly documented AMD 'Zenbleed' information leak flaw. Ryan NaraineJuly 26, 2023
Cloud Security Microsoft Cloud Hack Exposed More Than Exchange, Outlook Emails Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online. Ryan NaraineJuly 21, 2023
Cloud Security Watch Now: Cloud & Data Security Summit Sessions Watch Cloud & Data Security Summit sessions to learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Mike LennonJuly 21, 2023
Cloud Security Microsoft Bows to Pressure to Free Up Cloud Security Logs Facing intense pressure after Chinese APT hack, Microsoft plans to expand logging defaults for lower-tier M365 customers. Ryan NaraineJuly 19, 2023
Cloud Security Cisco Shopping Spree Adds Oort ID Threat Detection Tech The planned Oort purchase is Cisco’s fourth acquisition of a cybersecurity company in the first half of 2023. Ryan NaraineJuly 13, 2023
Cloud Security Orca Sues Wiz Over Alleged Cloud Security Patent Violations Orca Security sues its main rival, claiming patent infringements, intellectual property theft and even marketing copycat behavior. Ryan NaraineJuly 12, 2023
Artificial Intelligence Now’s the Time for a Pragmatic Approach to New Technology Adoption What a cloud migration strategy did for cloud adoption, an automation implementation strategy does for security automation adoption. Marc SolomonJuly 6, 2023
Cloud Security Data Security Firm Cyera Attracts $100M Investment Cyera closes a massive $100 million round as investors continue to pour cash into the data security posture management (DSPM) space. Ryan NaraineJune 27, 2023
Cloud Security Researchers Flag Account Takeover Flaw in Microsoft Azure AD OAuth Apps Businesses using ‘Log in with Microsoft’ could be exposed to privilege escalation and full account takeover exploits. Ryan NaraineJune 20, 2023
Cloud Security XSS Vulnerabilities in Azure Led to Unauthorized Access to User Sessions Microsoft addressed two cross-site scripting (XSS) vulnerabilities in Azure Bastion and Azure Container Registry (ACR) leading to unauthorized access to user sessions. Ionut ArghireJune 15, 2023
Cloud Security Google Cloud Now Offering $1 Million Cryptomining Protection Google Cloud is offering up to $1 million in financial protection to cover expenses associated with undetected cryptomining attacks. Ionut ArghireJune 9, 2023