Security News

Apple creates Private Cloud Compute VM to let researchers find bugs
2024-10-24 22:48

Apple created a Virtual Research Environment to allow public access to testing the security of its Private Cloud Compute system, and released the source code for some "key components" to help...

AWS Cloud Development Kit flaw exposed accounts to full takeover
2024-10-24 22:33

Remember Bucket Monopoly? Yeah, it gets worse Amazon Web Services has fixed a flaw in its open source Cloud Development Kit that, under the right conditions, could allow an attacker to hijack a...

AWS Cloud Development Kit Vulnerability Exposes Users to Potential Account Takeover Risks
2024-10-24 13:00

Cybersecurity researchers have disclosed a security flaw impacting Amazon Web Services (AWS) Cloud Development Kit (CDK) that could have resulted in an account takeover under specific...

Evolving cloud threats: Insights and recommendations
2024-10-23 04:00

Recently, IBM X-Force released its 2024 Cloud Threat Landscape Report. This uses incident data and insights to reveal how attackers successfully compromise organizations by leveraging...

Researchers Discover Severe Security Flaws in Major E2EE Cloud Storage Providers
2024-10-21 06:59

Cybersecurity researchers have discovered severe cryptographic issues in various end-to-end encrypted (E2EE) cloud storage platforms that could be exploited to leak sensitive data. "The...

Severe flaws in E2EE cloud storage platforms used by millions
2024-10-20 16:06

Several end-to-end encrypted (E2EE) cloud storage platforms are vulnerable to a set of security issues that could expose user data to malicious actors. [...]

Microsoft lost some customers’ cloud security logs
2024-10-18 13:24

Microsoft has lost several weeks of cloud security logs that its customers rely on to spot cyber intrusions. What happened As reported by Business Insider earlier this month, Microsoft privately...

Top 5 Cloud Security Automations for SecOps Teams
2024-10-17 14:02

Learn about 5 powerful cloud security automations with Blink Ops to simplify security operations like S3 bucket monitoring, subdomain takeover detection and failed EC2 login detection. [...]

5 Steps to Boost Detection and Response in a Multi-Layered Cloud
2024-10-14 11:09

The link between detection and response (DR) practices and cloud security has historically been weak. As global organizations increasingly adopt cloud environments, security strategies have...

Multi-cloud Strategies Making DDI and DNS Cumbersome to Manage
2024-10-07 13:54

Infoblox’s Universal DDI solution could help stop cyber threat actors earlier.