Cloud Security Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Cloud Security

Groucho’s Wit, Cloud Complexity, and the Case for Consistent Security Policy

The greatest security policies in the world are useless if enterprises don’t have a reasonable, consistent, and reliable way to implement them.

Joshua GoldfarbApril 9, 2025

Cloud Security

Oracle Confirms Cloud Hack

Oracle has confirmed suffering a data breach but the tech giant is apparently trying to downplay the impact of the incident.

Eduard KovacsApril 4, 2025

Cloud Security

ImageRunner Flaw Exposed Sensitive Information in Google Cloud

Google has patched a Cloud Run vulnerability dubbed ImageRunner that could have been exploited to gain access to sensitive data.

Eduard KovacsApril 2, 2025

Cloud Security

Security Firms Say Evidence Seems to Confirm Oracle Cloud Hack

Despite Oracle categorically denying that its Cloud systems have been breached, sample data released by the hacker seems to prove otherwise.

Eduard KovacsMarch 26, 2025

Cloud Security

IngressNightmare Flaws Expose Kubernetes Clusters to Remote Hacking

Critical remote code execution vulnerabilities found by Wiz researchers in Ingress NGINX Controller for Kubernetes.

Eduard KovacsMarch 25, 2025

Cloud Security

Oracle Denies Cloud Breach After Hacker Offers to Sell Data

Oracle has denied that Cloud systems have been breached after a hacker claimed to have stolen millions of records.

Eduard KovacsMarch 24, 2025

Cloud Security

Google Cloud Rolling Out Mandatory MFA for All Users

Starting this month, Google Cloud will be rolling out mandatory MFA for all users who sign in with a password.

Ionut ArghireNovember 6, 2024

Cloud Security

Honeypot Surprise: Researchers Catch Attackers Exposing 15,000 Stolen Credentials in S3 Bucket

Sysdig researchers trace a bizarre S3 bucket misconfiguration to EmeraldWhale, exposing 1.5 terabytes of stolen credentials and script.

Kevin TownsendOctober 31, 2024

Cloud Security

Big Rewards Offered in Dedicated Google Cloud Bug Bounty Program

More than 460 products and services are covered under Google Cloud’s new VRP, with 140 eligible for top tier bug bounty rewards.

Ionut ArghireOctober 21, 2024

Cloud Security

Microsoft Patches Vulnerabilities in Power Platform, Imagine Cup Site

Microsoft has patched ‘critical’ privilege escalation and information disclosure vulnerabilities in Power Platform, Dataverse and the Imagine Cup website.

Eduard KovacsOctober 16, 2024

Trusted execution environment (TEE) vulnerabilities

Cloud Security

New CounterSEVeillance and TDXDown Attacks Target AMD and Intel TEEs

Intel and AMD respond to new attack methods named TDXDown and CounterSEVeillance that can be used against TDX and SEV technology.

Eduard KovacsOctober 15, 2024

Cloud Security

Google Cloud Announces General Availability of New Confidential Computing Options

Google Cloud makes new confidential computing options generally available and expands attestation support.

Ionut ArghireOctober 4, 2024

Cloud Security

Cracking the Cloud: The Persistent Threat of Credential-Based Attacks

Credentials are still the most common entry point for bad actors, even as businesses deploy multi-factor authentication (MFA) to strengthen defenses.

Kevin TownsendOctober 1, 2024

Cloud Security

Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks

A threat actor has been compromising the hybrid cloud environments of US organizations in multiple sectors.

Ionut ArghireSeptember 30, 2024

Artificial Intelligence

Critical Nvidia Security Flaw Exposes Cloud AI Systems to Host Takeover

Nvidia confirms risk of code execution, denial of service, escalation of privileges, information disclosure, and data tampering. CVSS 9/10.

Ryan NaraineSeptember 26, 2024

Cloud Security

Tamnoon Raises $12 Million for Cloud Security Remediation Service

Tamnoon has raised $12 million in Series A funding for its Managed Cloud Security Remediation service.

Eduard KovacsSeptember 25, 2024

Cloud Security

Dependency Confusion Could Have Led to RCE in Google Cloud Platform

Tenable shares details on a dependency confusion attack that led to the execution of code on Google’s internal servers.

Ionut ArghireSeptember 17, 2024

Cloud Security

P0 Security Banks $15M for Security Cloud Access

San Francisco secure cloud access startup gets backing from SYN Ventures, Zscaler, and Lightspeed Venture Partners.

SecurityWeek NewsSeptember 10, 2024

Page 3 of 144‹ Previous 1 234 5 6 7 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Cloud Security

Groucho’s Wit, Cloud Complexity, and the Case for Consistent Security Policy

Cloud Security

Oracle Confirms Cloud Hack

Cloud Security

ImageRunner Flaw Exposed Sensitive Information in Google Cloud

Cloud Security

Security Firms Say Evidence Seems to Confirm Oracle Cloud Hack

Cloud Security

IngressNightmare Flaws Expose Kubernetes Clusters to Remote Hacking

Cloud Security

Oracle Denies Cloud Breach After Hacker Offers to Sell Data

Cloud Security

Google Cloud Rolling Out Mandatory MFA for All Users

Cloud Security

Honeypot Surprise: Researchers Catch Attackers Exposing 15,000 Stolen Credentials in S3 Bucket

Cloud Security

Big Rewards Offered in Dedicated Google Cloud Bug Bounty Program

Cloud Security

Microsoft Patches Vulnerabilities in Power Platform, Imagine Cup Site

Cloud Security

New CounterSEVeillance and TDXDown Attacks Target AMD and Intel TEEs

Cloud Security

Google Cloud Announces General Availability of New Confidential Computing Options

Cloud Security

Cracking the Cloud: The Persistent Threat of Credential-Based Attacks

Cloud Security

Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks

Artificial Intelligence

Critical Nvidia Security Flaw Exposes Cloud AI Systems to Host Takeover

Cloud Security

Tamnoon Raises $12 Million for Cloud Security Remediation Service

Cloud Security

Dependency Confusion Could Have Led to RCE in Google Cloud Platform

Cloud Security

P0 Security Banks $15M for Security Cloud Access

Featured

Data Breaches

Microsoft Purges Dormant Azure Tenants, Rotates Keys to Prevent Repeat Nation-State Hack

Artificial Intelligence

The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools

Vulnerabilities

Fresh Windows NTLM Vulnerability Exploited in Attacks

Vulnerabilities

SonicWall Flags Old Vulnerability as Actively Exploited

Malware & Threats

Apple Quashes Two Zero-Days With iOS, MacOS Patches

Government

MITRE CVE Program Gets Last-Hour Funding Reprieve

Nation-State

China Pursuing 3 Alleged US Operatives Over Cyberattacks During Asian Games

Latest News

Artificial Intelligence

Cloud Data Security Play Sentra Raises $50 Million Series B

Artificial Intelligence

DataKrypto Launches Homomorphic Encryption Framework to Secure Enterprise AI Models

Cybercrime

Cyberattack Knocks Texas City’s Systems Offline

Vulnerabilities

SSL.com Scrambles to Patch Certificate Issuance Vulnerability

Application Security

Open Source Security Firm Hopper Emerges From Stealth With $7.6M in Funding

Malware & Threats

Many Malware Campaigns Linked to Proton66 Network

Email Security

Legacy Google Service Abused in Phishing Attacks

Daily Briefing Newsletter