Cloud Security
Kaspersky said the CloudSorcerer APT has been abusing public cloud services to exfiltrate data from Russian government entities.
Hi, what are you looking for?
SecurityWeek
Cloud Security
VMware patches flaws that expose users to data leakage, command execution and denial-of-service attacks. No temporary workarounds available.
Cloud Security
Orca positioned the deal as an expansion of its capabilities into the realm of AI-based autonomous remediation and prevention.
Cloud Security
Misconfigured Apache Pinot instances can and have enabled threat actors to gain access to sensitive information.
Cloud Security
San Francisco identity security play Veza closes a Series D fund round led by New Enterprise Associates (NEA).
Cloud Security
With Living Off the Cloud (LOTC) attacks, hackers abuse APIs of trusted cloud services to remotely control botnets but also to make malicious traffic...
Cloud Security
Google has announced new Chrome Enterprise Core features that should be very useful to IT and security teams.
Cloud Security
AWS announced passkey MFA for IAM and root users, IAM Access Analyzer updates, and Amazon GuardDuty Malware Protection for S3.
Cloud Security
Mandiant says a financially motivated threat actor has compromised hundreds of Snowflake instances using customer credentials stolen via infostealer malware that infected non-Snowflake owned...
Cloud Security
Fortinet announces plans to acquire Lacework, a late-stage cloud security startup that was once listed as a “unicorn” company valued north of $1 billion.
Cloud Security
Tenable goes shopping again in Israel with plans to buy early stage startup Eureka Security to boost data security posture management tooling.
Cloud Security
Cloudlfare acquires Boston seed-stage startup BastionZero to bolster its Zero Trust Network Access technology portfolio.
Cloud Security
Google is invoking the 'monoculture' word in response to a scathing U.S. government report on Microsoft's inadequate cybersecurity practices.
Cloud Security
Linguistic Lumberjack (CVE-2024-4323) is a critical vulnerability in the Fluent Bit logging utility that can allow DoS, information disclosure and possibly RCE.
Cloud Security
Financial terms were not released but the price tag is expected to be hefty with Exabeam’s most recent valuation pegged at $2.5 billion.
Cloud Security
Cloud security giant Wiz has raised $1 billion, which brings the total funding to $1.9 billion, at a valuation of $12 billion.
Artificial Intelligence
Google rolls out new threat-intel and security operations products and looks to the magic of AI to tap into the booming cybersecurity market.
CISO Strategy
Microsoft security chief Charlie Bell pledges significant reforms and a strategic shift to prioritize security above all other product features.
Cloud Security
Israeli startup LayerX Security banks $25 million in new financing as investors continue to pour money into secure web browsing technologies.
Cloud Security
Cybersecurity startups Insane Cyber, Resonance Security, RunReveal and StepSecurity announce pre-seed, early-stage, and seed funding rounds.
Cloud Security
Traceable AI has raised $110 million since launching in 2018 with ambitious plans in the competitive API security and observability space.
Cloud Security
JFrog raises an alarm after finding three large-scale malware campaigns targeting Docker Hub with imageless repositories.
Cloud Security
Despite competitive pressures from industry behemoths like Microsoft and Google, investors are still betting big on startups in the specialized enterprise browser space.
Artificial Intelligence
Cisco announces Hypershield, an AI-native and cloud-native enterprise security solution with a wide range of capabilities.
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
RegisterLearn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.
RegisterExpert Insights
In the end, cybersecurity isn’t just about collecting data. It’s about proving that your defenses actually work.
(Torsten George)
Despite massive investment, the explosion of sophisticated malware and deepfake attacks persists because organizations struggle to verify digital identities and establish fundamental trust.
(Stu Sjouwerman)
Trying to block AI tools outright is a losing strategy. SaaS and AI are increasingly inseparable, and AI isn’t limited to tools like ChatGPT or Copilot anymore.
(Alastair Paterson)
CTI, digital brand protection and other cyber risk initiatives shouldn’t only be utilized by security and cyber teams.
(Marc Solomon)
Sightline Security’s founder explains why nonprofits need cybersecurity solutions tailored to their unique missions — and why vendors need to listen.
(Jennifer Leggio)