Cloud Security Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Cloud Security

Groucho’s Wit, Cloud Complexity, and the Case for Consistent Security Policy

The greatest security policies in the world are useless if enterprises don’t have a reasonable, consistent, and reliable way to implement them.

Joshua GoldfarbApril 9, 2025

Cloud Security

Oracle Confirms Cloud Hack

Oracle has confirmed suffering a data breach but the tech giant is apparently trying to downplay the impact of the incident.

Eduard KovacsApril 4, 2025

Cloud Security

ImageRunner Flaw Exposed Sensitive Information in Google Cloud

Google has patched a Cloud Run vulnerability dubbed ImageRunner that could have been exploited to gain access to sensitive data.

Eduard KovacsApril 2, 2025

Cloud Security

Security Firms Say Evidence Seems to Confirm Oracle Cloud Hack

Despite Oracle categorically denying that its Cloud systems have been breached, sample data released by the hacker seems to prove otherwise.

Eduard KovacsMarch 26, 2025

Cloud Security

IngressNightmare Flaws Expose Kubernetes Clusters to Remote Hacking

Critical remote code execution vulnerabilities found by Wiz researchers in Ingress NGINX Controller for Kubernetes.

Eduard KovacsMarch 25, 2025

Cloud Security

Oracle Denies Cloud Breach After Hacker Offers to Sell Data

Oracle has denied that Cloud systems have been breached after a hacker claimed to have stolen millions of records.

Eduard KovacsMarch 24, 2025

Cloud Security

Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018

The vulnerability, tagged as CVE-2024-41110 with a CVSS severity score of 10/10, was originally found and fixed in 2018.

Ryan NaraineJuly 24, 2024

Artificial Intelligence

Zest Security Aims to Resolve, Not Just Mitigate Cloud Risks

Zest Security emerged from stealth with $5 million funding and an AI-powered platform that resolves the root source of risk in the cloud.

Kevin TownsendJuly 24, 2024

Artificial Intelligence

Dazz Scores Hefty $50M Investment for AI-Powered Risk Remediation Tech

The new financing brings the total raised by Dazz to $110 million as investors double down on bets in the cloud security remediation space.

Ryan NaraineJuly 24, 2024

Cloud Security

Watch on Demand: Cloud & Data Security Summit

Join us as we explore the latest trends in the world of SaaS security, cyberattacks against cloud infrastructure, data security posture management (DSPM), and...

Mike LennonJuly 18, 2024

Artificial Intelligence

SAP AI Core Vulnerabilities Allowed Service Takeover, Customer Data Access

SAP patches AI Core vulnerabilities allowing attackers to access customer data and take over the service.

Eduard KovacsJuly 18, 2024

Cloud Security

Google in Advanced Talks to Buy Wiz for $23B: WSJ Report

Google's parent company Alphabet is reportedly in advanced talks to acquire the hotshot Israeli data security startup.

SecurityWeek NewsJuly 14, 2024

Cloud Security

Citrix Patches Critical NetScaler Console Vulnerability

Citrix rolls out patches for multiple security vulnerabilities, including critical and high-severity issues in the NetScaler product line.

Ionut ArghireJuly 10, 2024

Cloud Security

Kaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian Government

Kaspersky said the CloudSorcerer APT has been abusing public cloud services to exfiltrate data from Russian government entities.

Ionut ArghireJuly 8, 2024

Cloud attacks exploiting Aviatrix vulnerability

Cloud Security

Cloudy with a Chance of Cyberattack: Understanding LOTC Attacks and How ZTNA Can Prevent Them

With Living Off the Cloud (LOTC) attacks, hackers abuse APIs of trusted cloud services to remotely control botnets but also to make malicious traffic...

Etay MaorJuly 8, 2024

Cloud Security

Google Unveils New Chrome Enterprise Core Features for IT, Security Teams

Google has announced new Chrome Enterprise Core features that should be very useful to IT and security teams.

Eduard KovacsJune 26, 2024

Cloud Security

AWS Announces Authentication and Malware Protection Enhancements

AWS announced passkey MFA for IAM and root users, IAM Access Analyzer updates, and Amazon GuardDuty Malware Protection for S3.

Eduard KovacsJune 13, 2024

Cloud Security

Snowflake Attacks: Mandiant Links Data Breaches to Infostealer Infections

Mandiant says a financially motivated threat actor has compromised hundreds of Snowflake instances using customer credentials stolen via infostealer malware that infected non-Snowflake owned...

Ionut ArghireJune 10, 2024