Security News
Japanese game developer Ateam has proven that a simple Google Drive configuration mistake can result in the potential but unlikely exposure of sensitive information for nearly one million people over a period of six years and eight months. Setting Google Drive to "Anyone with the link can view" makes it viewable only to those with the exact URL, typically reserved for collaboration between people working with non-sensitive data.
Two not-for-profit hospitals in New York are seeking a court order to retrieve data stolen in an August ransomware attack and now stored on the servers of a Boston cloud storage company. The LockBit ransomware gang claimed responsibility for breaching and stealing sensitive files from their systems in late August, with a press release published by the hospitals one week later saying the incident forced them to redirect patients requiring urging care to other hospitals' emergency departments.
Google Cloud has addressed a medium-severity security flaw in its platform that could be abused by an attacker who already has access to a Kubernetes cluster to escalate their privileges. "An...
91% of banks and insurance companies have now initiated their cloud journey, a significant increase from 2020, when only 37% of firms had embarked on their cloud transformations, according to Capgemini. "For today's financial services organization, ignoring the cloud is simply not an option. Moving to the cloud requires looking beyond a cost-savings approach and being centered around driving innovation to gain a competitive edge," said Ravi Khokhar, Global Head of Cloud for Financial Services at Capgemini.
Cloud security is a critical aspect of modern computing, as businesses and individuals increasingly rely on cloud services to store, process, and manage data. Cloud computing offers numerous benefits, including scalability, flexibility, and cost efficiency, but it also introduces unique security challenges that need to be addressed to ensure the confidentiality, integrity, and availability of sensitive information.
The threat actor referred to as Cloud Atlas has been linked to a set of spear-phishing attacks on Russian enterprises. Targets included a Russian agro-industrial enterprise and a state-owned...
Generative AI can be used by attackers, but security professionals shouldn't lose sleep over it, according to a Google Cloud threat intelligence analyst. Google Cloud's team recently spoke about the most notable cybersecurity threats of 2023 - multi-faceted extortion and zero-day exploitation - and predicted more zero-day attacks in 2024, during two public, virtual sessions.
Apiiro, a leading application security posture management solution, today announced its partnership with Wiz, the leading cloud security company and Cloud Native Application Protection Platform provider. By joining Wiz Integrations, Apiiro brings the power of deep ASPM to the partner ecosystem, providing unified and contextual code-to-cloud application security.
Cloud transformation is increasingly funded by non-IT stakeholders, emphasizing its place as a broader enterprise transformation rather than solely an IT endeavor. Only 32% of cloud initiatives are funded by IT stakeholders, challenging the perception of cloud transformation solely as an IT-centric journey.
Cloud storage provider Box is down in a 'critical' outage, preventing customers from accessing their files. The outage started at approximately 9 AM ET, with the company stating that it is a critical outage impacting logins, uploads, downloads, and API calls.