Security News
Amid the COVID-19 crisis, the global market for cloud identity access and management estimated at $5.3 billion in the year 2022, is projected to reach a revised size of $13.6 billion by 2026, growing at a CAGR of 26.7% over the analysis period, according to Global Industry Analysts. This segment currently accounts for a 16.2% share of the global cloud identity access and management market.
Organizations still have a long way to go to understand, plan and deploy their cloud native security strategies, an Aqua Security study reveals. Many cloud native applications deployed within organizations don't have a security strategy in place.
Around a third of respondents stated that between 50-75 percent of their apps are cloud native, yet 20 percent have no cloud native security strategy in place. Paul Calatayud, CISO at Aqua Security said, "As more and more applications are built and run in the cloud, it's no surprise that we're seeing threat actors shift their focus to target cloud native environments. This demands a new approach to security. Many organizations in the UK are beginning to understand that cloud native security is not just a 'nice to have', but there is a clear need for more education in the UK and beyond."
Cryptocurrency mining groups that typically have targeted on-premises servers are now competing fiercely for servers in the cloud. "Some groups avoid the competition altogether by focusing on different aspects of the system, which results in less crossover between rival groups," the researchers observed.
VMWare Spring is a open-source Java toolkit for building powerful Java apps, including cloud-based apps, without needing to write, manage, worry about, or even understand the "Server" part of the process yourself. You don't need to worry about, or even care, what sort of server your code is running on: it could be a server of your own, set up and managed by your colleagues in IT; or a cloud instance hosted and executing on a popular cloud service provider.
A critical security vulnerability has bloomed in the Spring Cloud Function, which could lead to remote code execution and the compromise of an entire internet-connected host. Spring Cloud is an open-source microservices framework: A collection of ready-to-use components which are useful in building distributed applications in an enterprise.
Styra released a research report which explores how in sync, or misaligned, IT leaders and developers are when it comes to cloud-native technology use and security during their digital transformation journeys. As organizations increase adoption, the report outlines why developers and IT decision-makers need a unified approach in addressing security and compliance.
Western Digital has fixed a critical severity vulnerability that enabled attackers to gain remote code execution with root privileges on unpatched My Cloud OS 5 devices. This flaw is an out-of-bounds heap read/write in the Samba vfs fruit VFS module.
Western Digital has fixed a critical severity vulnerability that enabled attackers to gain remote code execution with root privileges on unpatched My Cloud OS 5 devices. This flaw is an out-of-bounds heap read/write in the Samba vfs fruit VFS module.
70% of IT leaders find the cloud skills gap to be a great concern, a Cloudreach research reveals. It either slowed them down or posed an existential crisis to the company.