#CloudSecurity

Stream Security Expands into CloudSecOps Market With Launch of Real-Time Cloud Security Solution

by

November 14, 2023 at 10:14PM Stream Security, previously known as Lightlytics, has announced its expansion into cloud security. The company has introduced a real-time Cloud Twin technology that allows organizations to detect and investigate threats in their cloud environment. The Cloud Twin continuously models the cloud environment, enabling improved collaboration between security and operations teams. … Read more

Alert: OracleIV DDoS Botnet Targets Public Docker Engine APIs to Hijack Containers

by

November 14, 2023 at 07:33AM Threat actors are targeting publicly-accessible Docker Engine API instances to create a DDoS botnet called OracleIV. Attackers exploit the misconfiguration to install a malicious Docker container, which contains Python malware. The container also retrieves a shell script from a command-and-control (C&C) server. Cloud security firm Cado observed no evidence of … Read more

What We Can Learn from Major Cloud Cyberattacks

by

November 9, 2023 at 05:26PM Notorious cloud hacks between 2020 and 2022 could have been prevented by faster detection and response, according to research by Mohamed Shaaban at Sysdig. The study examined six major cloud security incidents and found that attackers are becoming more advanced in their use of automated tools. Sysdig has proposed the … Read more

Webinar: Kickstarting Your SaaS Security Strategy & Program

by

November 8, 2023 at 04:21AM This article discusses the importance of securing SaaS applications, which make up 70% of a company’s software usage. Safeguarding the organization’s SaaS app stack and data is crucial, but implementing an effective SaaS security program is complex due to various potential attack vectors and dynamic app environments. A webinar with … Read more

Hackers exploit Looney Tunables Linux bug, steal cloud creds

by

November 6, 2023 at 03:26PM The Kinsing malware operators are targeting vulnerable cloud environments using a Linux security issue known as “Looney Tunables” (CVE-2023-4911). The malware exploits this vulnerability to gain root privileges on compromised systems. Kinsing is known for breaching cloud-based systems and deploying cryptomining software. Recent attacks have targeted Kubernetes clusters through misconfigured … Read more

Securing Cloud Infrastructure Demands a New Mindset

by

November 4, 2023 at 01:08PM The increased attacks on cloud infrastructure and services have created a scenario where successful breaches affect both cloud providers and users. To better protect public cloud resources, organizations need to adopt new ways of thinking, understand likely attack vectors, and collaborate closely with their cloud service providers. Misconfigurations and stolen … Read more

Kinsing Actors Exploiting Recent Linux Flaw to Breach Cloud Environments

by

November 3, 2023 at 09:42AM The Kinsing threat actors are exploiting a Linux privilege escalation flaw called Looney Tunables in a new experimental campaign aimed at breaching cloud environments. They are also extracting credentials from Cloud Service Providers. This is the first documented instance of active exploitation of Looney Tunables, allowing the threat actors to … Read more

Oracle Enables MFA by Default on Oracle Cloud

by

November 3, 2023 at 08:41AM Oracle now requires multifactor authentication (MFA) for all instances in its cloud environment, Oracle Cloud Infrastructure. New tenancies have MFA enabled by default for cloud administrators, and preexisting systems have a default policy to enforce MFA. Oracle provides tools for managing configuration and access control policies, including the ability to … Read more

More Than 100 Vulns in Microsoft 365 Tied to SketchUp 3D Library

by

November 1, 2023 at 07:05PM A recent report from ZScaler’s ThreatLabz revealed that Microsoft 365 has numerous vulnerabilities due to its support for the SketchUp 3D Library. Over a three-month period, ZScaler identified 117 unique vulnerabilities, prompting Microsoft to release patches. However, the fixes were bypassed, resulting in Microsoft temporarily disabling SketchUp support in June … Read more

Doing It Together: Detection and Incident Response with Your Cloud Provider

by

November 1, 2023 at 06:35PM Detecting and responding to cybersecurity incidents in the cloud can be challenging, especially for those with little cloud experience. Incident management is often overlooked but requires collaboration with the cloud provider. Although the fundamentals of cybersecurity remain the same, there are key differences in threat detection and response in the … Read more