cloud-security
154 articles with this tag
INFO
INFO
INFO
INFO
HIGH
INFO
INFO
CRITICAL
CRITICAL
INFO
HIGH
HIGH
INFO
HIGH
HIGH
INFO
HIGH
MEDIUM
MEDIUM
CRITICAL
MEDIUM
INFO
INFO
CRITICAL
INFO
INFO
CRITICAL
INFO
INFO
INFO
INFO
INFO
INFO
HIGH
MEDIUM
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
MEDIUM
CRITICAL
HIGH
INFO
INFO
MEDIUM
MEDIUM
INFO
INFO
INFO
CRITICAL
INFO
INFO
CRITICAL
HIGH
INFO
MEDIUM
INFO
INFO
MEDIUM
LOW
MEDIUM
HIGH
INFO
INFO
HIGH
CRITICAL
MEDIUM
HIGH
CRITICAL
INFO
INFO
INFO
HIGH
HIGH
CRITICAL
INFO
INFO
INFO
HIGH
INFO
INFO
INFO
HIGH
HIGH
HIGH
MEDIUM
HIGH
INFO
MEDIUM
INFO
INFO
Companies built AI into core systems before figuring out how to govern it
Welcoming the AWS Customer Incident Response Team
AppOmni’s Marlin AI Brings Autonomous Investigation to SaaS Security
Tamnoon introduces skill-based AI orchestration for autonomous cloud defense
Megalodon chums the waters in 5.5K+ GitHub repo poisonings
[Analysis] CISA contractor left AWS GovCloud admin keys, plaintext passwords, SAML certs, and Kubernetes configs on a public GitHub repo for 183 days — with secret scanning deliberately disabled
AWS KY3P report now available for third-party supplier due diligence
Cisco serves up yet another perfect 10 bug with Secure Workload admin flaw
When Identity is the Attack Path
SASE manages your network access, but who manages your SASE?
Microsoft Self-Service Password Reset abused in Azure data theft attacks
How Storm-2949 turned a compromised identity into a cloud-wide breach
Schwachstellen managen: Die besten Vulnerability-Management-Tools
How Storm-2949 turned a compromised identity into a cloud-wide breach
Hotel check-in system exposed over 1 million customer passports
Attacking Cloud Service Providers (ACSP) - An interactive textbook on control-plane intrusion and breaking cross-tenant isolation
AI coding is fueling a secrets-sprawl crisis few CISOs are containing
Apple Maildrop lets you rewrite the filename, size, and icon on any icloud.com attachment link — no signature, no validation — reported July 2023, still live
Multiples vulnérabilités dans Microsoft Azure (13 mai 2026)
[NEU] [hoch] Microsoft Azure und Windows Admin Center: Mehrere Schwachstellen
North Korea's abuse of Cloudflare Workers and Pages
Transilience AI unveils Security Operating System for cloud remediation
CVE-2026-35428 Azure Cloud Shell Spoofing Vulnerability
New PCPJack worm steals credentials, cleans TeamPCP infections
The hidden risk in hybrid IT: Fragmented vulnerability management
CrowdStrike Falcon Cloud Security Delivered 264% ROI Through Unified Cloud Protection
CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments
CrowdStrike Expands Real-Time Cloud Detection and Response to Google Cloud
CrowdStrike Named a Leader in Frost & Sullivan 2026 Radar for Cloud-Native Application Protection Platforms
CrowdStrike Expands ChatGPT Enterprise Integration with Enhanced Audit Logging and Activity Monitoring
CrowdStrike Falcon Cloud Security Delivered 264% ROI Through Unified Cloud Protection
CrowdStrike Expands Real-Time Cloud Detection and Response to Google Cloud
CrowdStrike Named a Leader in Frost & Sullivan 2026 Radar for Cloud-Native Application Protection Platforms
[NEU] [mittel] Red Hat OpenStack Services auf OpenShift (Nova): Schwachstelle ermöglicht Manipulation von Dateien
[NEU] [niedrig] Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Offenlegung von Informationen
Introducing the CrowdStrike Shadow AI Visibility Service
CrowdStrike Falcon Cloud Security Delivered 264% ROI Through Unified Cloud Protection
CrowdStrike Expands Real-Time Cloud Detection and Response to Google Cloud
CrowdStrike Named a Leader in Frost & Sullivan 2026 Radar for Cloud-Native Application Protection Platforms
CrowdStrike Expands ChatGPT Enterprise Integration with Enhanced Audit Logging and Activity Monitoring
CrowdStrike Falcon Cloud Security Delivered 264% ROI Through Unified Cloud Protection
CrowdStrike Expands Real-Time Cloud Detection and Response to Google Cloud
CrowdStrike Named a Leader in Frost & Sullivan 2026 Radar for Cloud-Native Application Protection Platforms
CrowdStrike Expands ChatGPT Enterprise Integration with Enhanced Audit Logging and Activity Monitoring
CrowdStrike Expands Real-Time Cloud Detection and Response to Google Cloud
CrowdStrike Named a Leader in Frost & Sullivan 2026 Radar for Cloud-Native Application Protection Platforms
CrowdStrike Falcon Cloud Security Delivered 264% ROI Through Unified Cloud Protection
CrowdStrike Expands Real-Time Cloud Detection and Response to Google Cloud
Vercel Hacked: A Simple Failure of OAuth Hygiene | THREAT WIRE
LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure
Vercel attack fallout expands to more customers and third-party systems
CrowdStrike Falcon Cloud Security Delivered 264% ROI Through Unified Cloud Protection
CrowdStrike Expands Real-Time Cloud Detection and Response to Google Cloud
AI-driven cloud attacks reach ‘functional’ maturity, says Unit 42
USN-8199-1: OpenStack Glance vulnerabilities
AI Can Autonomously Hack Cloud Systems With Minimal Oversight: Researchers
AIはクラウドを攻撃できるのか?自律型クラウド攻撃型マルチエージェント システムの構築から得られた教訓
Can AI Attack the Cloud? Lessons From Building an Autonomous Cloud Offensive Multi-Agent System
Vercel Finds More Compromised Accounts in Context.ai-Linked Breach
Sysdig report signals end of human-led cloud defense
Orca exec warns against chasing security trends
Azure SRE Agent flaw lets outsiders silently eavesdrop on enterprise cloud operations
Vercel Confirms Cyber Incident After Sophisticated Attacker Exploits Third‑Party Tool
EU pushes for stronger cloud sovereignty, awards €180 million to four providers
Vercel breached via compromised third-party AI tool
12 Best Practices for Securing AWS Cloud in 2026
Qualys VMDR and TotalCloud™ Now Available on Oracle Cloud Marketplace
Vercel breached via compromised third-party AI tool
Vault Enterprise 2.0 modernizes identity security at scale
Was bei der Cloud-Konfiguration schiefläuft – und wie es besser geht
China-linked cloud credential heist runs on typos and SMTP
Intruder expands cloud security with agentless container image scanning
On Microsoft’s Lousy Cloud Security
Cracks in the Bedrock: Agent God Mode
New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy
Chaos malware expands from routers to Linux cloud servers
Snowflake customers hit in data theft attacks after SaaS integrator breach
Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign
Amazon GuardDuty enhances detection efficacy with Sophos threat intelligence
Amazon security boss: AI makes pentesting 40% more efficient
Egnyte expands Content Cloud with AI Governance and built-in Assistant
TeamPCP Breaches Cloud, SaaS Instances With Stolen Credentials
TeamPCP Moves From OSS to AWS Environments
Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts
Double Agents: Exposing Security Blind Spots in GCP Vertex AI
Why Kubernetes controllers are the perfect backdoor
Data Security Posture Management: Die besten DSPM-Tools
European Commission investigating breach after Amazon cloud hack
Common Entra ID Security Assessment Findings – Part 1: Foreign Enterprise Applications With Privileged API Permissions
Codenotary introduces AgentX for autonomous Linux infrastructure security
Rapid7 Completes BSI C5 Type 2 Examination: Stronger Cloud Security for DACH Organizations
An AI-powered phishing campaign has compromised hundreds of organizations
‘CanisterWorm’ Springs Wiper Attack Targeting Iran
The phone call is the new phishing email
Smooth criminals talking their way into cloud environments, Google says
A YC-Backed Startup Left Production AWS Keys Public for 5 Months.
Rapid7 enhances Exposure Command with runtime validation and DSPM for risk analysis
The multi-billion dollar mistake: Why cloud misconfigurations are your biggest security threat
Cloud Access Security Broker – ein Kaufratgeber
Proofpoint Pursues FedRAMP High Authorization Process for Collaboration Security