Security Experts:

long dotted


"Credential Stuffing is growing fast," Rich Bolstridge, chief strategist for financial services at Akamai Technologies, told SecurityWeek. "In March and April 2018 we logged over 6 billion malicious login attempts. By May and June, this had risen to more than 8 billion attempts." [Read More]
Container security company Sysdig raises $68.5 million, which brings the total funding to date to over $121 million [Read More]
Mountain View, Calif-based Lacework has closed a $24 million Series B funding round, bringing the total raised to $32 million. [Read More]
ESET launches new enterprise security solutions, including EDR, forensic investigation, threat monitoring, sandbox and management tools [Read More]
Twistlock, a provider of solutions to protect cloud containers, has raised $33 million in Series C funding, bringing the total raised to-date by the company to $63 million. [Read More]
Google has shared more details on the recently released Shielded VMs, a new offering designed for securing workloads running on the Google Cloud Platform (GCP). [Read More]
Facebook has asked major US banks to share customer data to allow it to develop new services on the social network's Messenger texting platform, a banking source told reporters. [Read More]
NetSpectre shows that Spectre Variant 1 attacks can be used to read arbitrary memory data remotely in a LAN or the cloud, but exfiltration is limited to 60 bits per hour [Read More]
Google on Wednesday took the wraps off a broad range of tools to help cloud customers secure access to resources and better protect data and applications. [Read More]
Vulnerabilities in Apache OpenWhisk could have been exploited by hackers to overwrite and execute code in IBM Cloud Functions. Patches released by both Apache and IBM [Read More]

FEATURES, INSIGHTS // Cloud Security

rss icon

Ashley Arbuckle's picture
Just like getting off the couch and into shape can be overwhelming, the same can be true for transitioning to the public cloud.
Ashley Arbuckle's picture
With more leading-edge IT capabilities available only in the cloud, companies that can migrate more of their applications accordingly stand to gain even greater agility, scalability, and efficiencies required for business success.
Travis Greene's picture
Shadow IT 2.0 is a symptom of a bigger problem – the inability to maintain digital competitive advantage due to the insufficient pace of code deployment.
Scott Simkin's picture
Attackers have developed anti-VM analysis techniques to allow the malware to recognize when it is being run on a virtual machine and fail to execute, meaning the system or threat analytics cannot make a verdict determination or extract intelligence from the sample.
Marie Hattar's picture
To fully realize the benefit of the Public Cloud, it is vital that the same due diligence applied to a physical network is applied to a cloud-based infrastructure.
Ken McAlpine's picture
Dozens of isolated security tools and platforms, regardless of how relevant they are to new cloud-based networks, create their own problem.
Marie Hattar's picture
Given the security events over the past year, ,2017 will be the year in which many finally accept that network infrastructure and security will have to be rethought from the ground up.
David Holmes's picture
What are the possible threat vectors if you were doing a threat model assessment for any of cloud passwords management models?
Jim Ivers's picture
Organizations should fear security concerns when considering moving applications to the cloud. But they need to recognize that moving web applications to the cloud does not make them secure.
Jennifer Blatnik's picture
While using containers to secure your organization is a relatively novel approach, it can lead to cost savings and massive scalability.