cloud security

Malware that spreads via Redis now capable of deploying ransomware

P2Pinfect now able to deploy ransomware and crypto miner payloads.

Azania Imtiaz Patel June 26, 2024

AWS amplify IAM vulnerability CVE-2024-28056

AWS

News

AWS overhauls IAM control plane after vulnerability exposed users

Datadog suggests AWS Amplify users conduct "an audit of your roles and potential threat activity" after investigation.

Edward Targett April 16, 2024

AWS took 6 months to fix Security Token Service bug - IAM policy simulator inadequate, says Stedi

AWS took 6 months to fix Security Token Service bug - IAM policy simulator inadequate, says Stedi

"No system is infallible. Sometimes, it is AWS..."

The Stack April 10, 2024

Kubernetes

News

A NASDAQ-listed firm left its Kubernetes clusters perilously exposed. 1,000+ have fallen into the same trap. Here’s why

Google says "we've taken several steps to reduce the risk of users making authorization errors with the Kubernetes built-in users and groups, including..."

The Stack January 29, 2024

News

google

Google talks up AI, security for cloud

Google unveiled a series of AI-centric features for its various cloud offerings, with security in particular being a focus

Shaun Nichols August 29, 2023

Reimagining cloud-native security for developers and platform owners

cybersecurity

News

Sysdig

Reimagining cloud-native security for developers and platform owners

Even with ‘traditional’ configuration of resources in the cloud - and Kubernetes becomes a more extreme example of this – what is crystal clear is that security cannot stay outside of the development and DevOps teams."

The Stack July 04, 2023

Microsoft admits “insecure pattern” in Azure AD exposed customers to risk of data loss, account takeover

"The risk is mainly with multi-tenant applications where this misconfiguration could result [in] account and privilege escalation" -- here's what you need to do.

The Stack June 22, 2023

Cryptojacking: Low Risk for Them, High Cost for You

Cybersecurity

cryptomining

Sysdig

Cryptojacking: Low Risk for Them, High Cost for You

With harvested credentials some groups spun up additional resources until they exhausted the credit cards on file...

Anna Belak May 08, 2023

Malware that spreads via Redis now capable of deploying ransomware

AWS overhauls IAM control plane after vulnerability exposed users

AWS took 6 months to fix Security Token Service bug - IAM policy simulator inadequate, says Stedi

A NASDAQ-listed firm left its Kubernetes clusters perilously exposed. 1,000+ have fallen into the same trap. Here’s why

Google talks up AI, security for cloud

Reimagining cloud-native security for developers and platform owners

Microsoft admits “insecure pattern” in Azure AD exposed customers to risk of data loss, account takeover

Cryptojacking: Low Risk for Them, High Cost for You