April 18, 2024 at 08:35AM Researcher Daniel Bohannon discusses the challenges of dealing with extensive logging in Amazon Web Services, which creates a large volume of events that make it difficult to identify user actions. He plans to launch an open-source tool at Black Hat Asia to help consolidate the cloud log events, with future … Read more
March 6, 2024 at 10:02AM The cloud security landscape continues to evolve, with the Cloud Security Alliance (CSA) highlighting 11 key threats and recommended defenses. Issues like misconfigurations and inadequate change control continue to challenge organizations. Effective strategies include building a robust identity program and investing in threat hunting, emphasizing the need for proactive measures … Read more
December 6, 2023 at 03:21AM Trend Micro’s security predictions for 2024 emphasize the need for organizations to adapt their cybersecurity to evolving technologies like cloud, AI/ML, and Web3. Expected threats include cloud-native worms exploiting misconfigurations, sophisticated AI-generated social engineering scams, data poisoning against ML models, CI/CD pipeline attacks on software supply chains, and blockchain-based extortion … Read more