Security News

The latest escalation of the cybersecurity arms race finds threat actors following their targets into the cloud as they start to launch difficult-to-detect attacks by leveraging trusted domains owned by companies like Google and Microsoft. According to a blog post from cybersecurity software company Proofpoint, cloud collaboration tools like Microsoft 365, Azure, OneDrive, SharePoint, G-Suite and Firebase are being used to launch an increasing number of cyberattacks, and their cloud-hosted nature makes them difficult to detect.

Virtuozzo has announced the availability of its newest product, Virtuozzo Hybrid Cloud. According to Liam Eagle, Research Director, 451 Research, a part of S&P Global Market Intelligence, "As the breadth of organizations seeking cloud solutions continues to grow, a gap in the skills necessary to navigate the complexities of the most advanced cloud platforms is a common limitation. This presents an opportunity for the alternative vendors to solidify the role of their services as delivering the core value proposition of cloud in a simpler, more digestible and often lower-cost configuration."

The solution addresses a clear market need in the service provider product portfolio to expand cloud PBX services by offering business mobility, messaging, and video conferencing. Following Alianza's acquisition of CounterPath in March 2021, the combined teams have rapidly integrated their next generation cloud PBX platform with softphones, cloud meetings, and mobile UCaaS solution - creating an easy to manage upgrade path for business customers.

Cloud-native authorization provider Styra on Tuesday announced that it closed a $40 million Series B funding round. Founded in 2016 and headquartered in San Francisco, Styra is best known for the Open Policy Agent, a policy engine for automatically enforcing, monitoring, and remediating policies across IT environments, including cloud-native applications.

Cloud Security Posture Management firm Aqua Security has analyzed the anonymized cloud configuration data of hundreds of its clients over a period of 12 months. The intent was to discover the size of the cloud misconfiguration problem, and the response from industry to known issues.

Reflecting the overwhelming amount of configurations practitioners must address, even when companies are aware of errors, most have not addressed the bulk of these issues in a timely manner. "When you consider that a single cloud misconfiguration can expose organizations to severe cyber risk, such as data breaches, resource hijacking and denial of service attacks, the consequences of failing to address misconfiguration issues are all too real to ignore," said Assaf Morag, Lead Data Analyst with Aqua's Team Nautilus.

Digital transformation is driving multi-cloud migrations, as 85 percent of organizations use at least two cloud providers for data storage and analytics, while 40 percent use five or more. Comprised of 100 executives from Fortune 500 companies, the survey found businesses are experiencing a conflict between a data scientist's need for quick data access and IT's need to ensure data security and privacy, as 58 percent felt that access restrictions were impacting the productivity of their analytic teams.

ClearDATA announced an expanded capability of their ClearDATA Healthcare Security and Compliance Platform, enabling healthcare organizations and their business associates to automatically detect protected health information in multi-cloud storage buckets. "In today's climate, cybersecurity breaches are at an all-time high, partially due to the industry's accelerating cloud adoption to tackle the unique challenges healthcare has encountered during the pandemic," said Suhas Kelkar, Chief Product Officer at ClearDATA. "This new technology offering enhances healthcare organizations' ability to create secure environments for data that facilitate innovation, collaboration and scalability."

In response, we have seen a noticeable shift to companies adopting hybrid cloud environments - a solution that takes advantage of the best qualities of both the public and private cloud. Companies are increasingly deploying a hybrid cloud approach to balance the benefits and challenges presented by both the public and private cloud.

Auth0 announced the Auth0 identity operating system, a cloud-native, adaptable platform for development teams. Built with extensible building blocks, the Auth0 identity OS enables organizations to manage the complexities of today's identity management, while also prioritizing the security, privacy, and convenience of their end users.