Security News
Adobe on Tuesday announced that it has patched critical code execution vulnerabilities in its Connect, Creative Cloud, and Framemaker products. In the Creative Cloud desktop application, Adobe fixed three flaws rated critical, including arbitrary file overwrite and OS command injection issues that can lead to code execution, and an improper input validation issue that can be exploited for privilege escalation.
Adobe has released security updates that fix vulnerabilities in Adobe Creative Cloud Desktop, Framemaker, and Connect. In total, the company fixed eight vulnerabilities today, with the majority of them rated as Critical as they allow arbitrary code execution.
Paysafe announces a new multi-year, global deal which will see Microsoft support Paysafe's strategic move to cloud-based transaction services. As part of the collaboration, Paysafe is leveraging Microsoft Azure's open and flexible cloud computing platform and tools for its US payment processing and merchant services.
Leveraging the ThreatAlert in-boundary security stack, Bitglass received a FedRAMP Moderate ATO for their Total Cloud Security Platform. "We are excited to see cybersecurity solutions like the Bitglass Cloud Access Security Broker achieve a FedRAMP ATO accreditation on AWS GovCloud," said Gaurav "GP" Pal, CEO, stackArmor, Inc. "The stackArmor ThreatAlert ATO Accelerator for AWS East/West and AWS GovCloud continues to gain rapid market acceptance as it dramatically reduces the time and cost of compliance that is critical for regulated markets."
Thousands of mobile applications expose user data through insecurely implemented cloud containers, according to a new report from security vendor Zimperium. Some of the analyzed apps would leak their entire cloud infrastructure scripts, SSH keys, web server config files, installation files, or passwords.
Nutanix announced the global public sector industry findings of its report, measuring organizations' plans for adopting a private, hybrid and public cloud. While public sector organizations have historically grappled with regulations that deter telework, the pandemic forced them to take necessary steps to securely support a remote workforce.
As cloud computing continues to grow, Google Cloud is quickly becoming one of the most popular solutions. The Google Cloud Certifications Practice Tests + Courses Bundle helps you get certified faster, with 43 hours of video content and over 1,000 practice questions.
Awake Security, the network detection and response security division of Arista Networks unveiled platform enhancements that strengthen its ability to detect advanced threats, protect the unmanaged attack surface and autonomously perform threat hunting and forensic investigations. Awake's NDR platform is a key pillar of Arista's vision for zero trust security.
Ingram Micro Cloud announced its new White-Label Marketplace, a robust feature for resellers to publish and launch their own branded marketplace on the Ingram Micro Cloud Marketplace. Now, reseller partners can easily automate their own cloud business and ultimately increase sales by directly offering the best-in-class technology solutions available on the Ingram Micro Cloud Marketplace, while also providing access to a selection of self-branded services to give their customers a more customized experience.
A new report conducted by Dimensional Research revealed that 32% of enterprises experienced unauthorized access to cloud resources, and another 19% were unaware if unauthorized access occurred. "This research highlights the immense cloud governance gaps enterprises experience that ultimately leave sensitive data vulnerable to breaches. It is critical enterprises adopt a unified approach to properly govern cloud access and protect enterprise data to avoid costly breaches and preserve trust."