Security Experts:

long dotted


Researchers have devised an attack method called SEVered, which they say is capable of bypassing AMD’s Secure Encrypted Virtualization (SEV) and can be used to extract all memory contents of a virtual machine. [Read More]
VMware patches privilege escalation and DoS vulnerabilities in Fusion and Workstation products. The company also published an advisory for the recently uncovered speculative execution attack known as Variant 4 [Read More]
An 18-year-old researcher from Uruguay earned more than $36,000 for finding critical Google App Engine vulnerabilities [Read More]
Google has released an open-source framework and software development kit (SDK) that allows developers to build applications targeting trusted execution environments. [Read More]
Microsoft patches critical remote code execution vulnerability in the Windows Host Compute Service Shim open source library [Read More]
Amazon announced a series of enhancements for the domain protections available in CloudFront, meant to ensure that all requests handled by the service come from legitimate domain owners. [Read More]
Microsoft unveils Trusted Cyber Physical Systems (TCPS), a new solution designed to protect critical infrastructure and other industrial systems against cyber threats [Read More]
Kaspersky launches Hybrid Cloud Security, a solution designed to protect hybrid clouds against internal and external threats [Read More]
FireEye announces new solutions, capabilities, pricing and packaging models, and a partnership with Oracle [Read More]
McAfee announced two additions to its cloud security program, and published a new analysis of the corporate adoption of cloud services. [Read More]

FEATURES, INSIGHTS // Cloud Security

rss icon

John Maddison's picture
Analysis of a vendor’s underlying design and optimization approaches will enable you to select the solution that best meets your organization’s performance and budgetary requirements.
Ashley Arbuckle's picture
What can you do to mitigate the risk you may be inadvertently introducing to your public cloud deployments?
Scott Simkin's picture
Clunky security approaches, pieced together from multiple vendors, result in a fragmented security environment where IT teams must manually correlate data to implement actionable security protections.
Ashley Arbuckle's picture
While it’s easy to deploy new IT services, many of the security tools and processes that we’ve used in our networks and data centers will not work in public clouds.
Travis Greene's picture
Maintaining consistent security controls across the entire hybrid IT environment is growing increasingly complex as more cloud services are adopted.
Scott Simkin's picture
While it's not possible to put a physical firewall in the cloud, security professionals must apply the same rigor to secure the cloud as they would the network or the endpoint.
Marie Hattar's picture
Without visibility, your security teams are more likely to over or under invest in your company’s security infrastructure. That is a big risk to take.
Ting-Fang Yen's picture
With the commoditization of cloud computing in recent years, fraudsters and cybercriminals alike have started to take advantage of public cloud services and dedicated/virtual hosting to conduct attacks.
Ashley Arbuckle's picture
Just like getting off the couch and into shape can be overwhelming, the same can be true for transitioning to the public cloud.
Ashley Arbuckle's picture
With more leading-edge IT capabilities available only in the cloud, companies that can migrate more of their applications accordingly stand to gain even greater agility, scalability, and efficiencies required for business success.