Cloud - Security Ticks

Maximizing security visibility on a budget

Artificial Intelligence, Cloud, Compliance, cybersecurity, Don't miss, Features, Forescout, Hot stuff, IoT, IT assets, network, News, opinion, security controls, zero trust / SecurityTicks

Maximizing security visibility on a budget 2024-11-05 at 07:03 By Mirko Zorz In this Help Net Security interview, Barry Mainz, CEO at Forescout, discusses the obstacles organizations encounter in attaining security visibility, particularly within cloud and hybrid environments. He explains why asset intelligence—going beyond basic visibility to understand device behavior and risk—is essential. Mainz also […]

React to this headline:

Maximizing security visibility on a budget Read More »

Cracking the Cloud: The Persistent Threat of Credential-Based Attacks

Cloud, cloud security, credentials, Identity & Access / SecurityTicks

Cracking the Cloud: The Persistent Threat of Credential-Based Attacks 2024-10-01 at 16:01 By Kevin Townsend Credentials are still the most common entry point for bad actors, even as businesses deploy multi-factor authentication (MFA) to strengthen defenses. The post Cracking the Cloud: The Persistent Threat of Credential-Based Attacks appeared first on SecurityWeek. This article is an

React to this headline:

Cracking the Cloud: The Persistent Threat of Credential-Based Attacks Read More »

Ransomware attackers hop from on-premises systems to cloud to compromise Microsoft 365 accounts

account hijacking, Cloud, credentials, Don't miss, Hot stuff, Microsoft, Microsoft Entra ID, News, privileged accounts, Ransomware / SecurityTicks

Ransomware attackers hop from on-premises systems to cloud to compromise Microsoft 365 accounts 2024-09-30 at 17:01 By Zeljka Zorz Storm-0501, an affiliate of several high-profile ransomware-as-a-service outfits, has been spotted compromising targets’ cloud environments and on-premises systems. “Storm-0501 is the latest threat actor observed to exploit weak credentials and over-privileged accounts to move from organizations’

React to this headline:

Ransomware attackers hop from on-premises systems to cloud to compromise Microsoft 365 accounts Read More »

Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks

Cloud, cloud security, Embargo, Ransomware / SecurityTicks

Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks 2024-09-30 at 15:06 By Ionut Arghire A threat actor has been compromising the hybrid cloud environments of US organizations in multiple sectors. The post Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks Read More »

Nextcloud Hub 9 released: New features, more security, updated performance

Cloud, cloud computing, News, open source / SecurityTicks

Nextcloud Hub 9 released: New features, more security, updated performance 2024-09-20 at 06:01 By Help Net Security Nextcloud has launched Nextcloud Hub 9, a significant update to its open-source cloud-based collaboration platform. It introduces several new features to improve user experience, performance, and security. Enhanced security in Nextcloud Hub 9 Nextcloud Hub 9 lets you

React to this headline:

Nextcloud Hub 9 released: New features, more security, updated performance Read More »

Dependency Confusion Could Have Led to RCE in Google Cloud Platform

Cloud, cloud security, CloudImposer, Google Cloud, vulnerability / SecurityTicks

Dependency Confusion Could Have Led to RCE in Google Cloud Platform 2024-09-17 at 16:25 By Ionut Arghire Tenable shares details on a dependency confusion attack that led to the execution of code on Google’s internal servers. The post Dependency Confusion Could Have Led to RCE in Google Cloud Platform appeared first on SecurityWeek. This article

React to this headline:

Dependency Confusion Could Have Led to RCE in Google Cloud Platform Read More »

Cryptomator: Open-source cloud storage encryption

Cloud, cloud security, Don't miss, Encryption, Hot stuff, News, open source, Privacy, software / SecurityTicks

Cryptomator: Open-source cloud storage encryption 2024-08-28 at 07:31 By Mirko Zorz Cryptomator offers open-source, client-side encryption of your files in the cloud. It’s available for Windows, Linux, macOS and iOS. Cryptomator works with Dropbox, Google Drive, OneDrive, MEGA, pCloud, ownCloud, Nextcloud, and any other cloud storage service that synchronizes with a local directory. Key features

React to this headline:

Cryptomator: Open-source cloud storage encryption Read More »

PostgreSQL databases under attack

Aqua Security, brute-force, Cloud, cryptojacking, Don't miss, Hot stuff, Linux, Malware, News, PostgreSQL, tips / SecurityTicks

PostgreSQL databases under attack 2024-08-21 at 16:16 By Zeljka Zorz Poorly protected PostgreSQL databases running on Linux machines are being compromised by cryptojacking attackers. The attack – observed by Aqua Security researchers on a honeypot system – starts with the threat actors brute-forcing access credentials. Once access is achieved, the threat actor: Creates a new

React to this headline:

PostgreSQL databases under attack Read More »

Azure Kubernetes Services Vulnerability Exposed Sensitive Information

Azure, Cloud, cloud security, Kubernetes / SecurityTicks

Azure Kubernetes Services Vulnerability Exposed Sensitive Information 2024-08-21 at 14:46 By Ionut Arghire A vulnerability in Azure Kubernetes Services could have allowed attackers to escalate privileges and access sensitive information on the clusters. The post Azure Kubernetes Services Vulnerability Exposed Sensitive Information appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Azure Kubernetes Services Vulnerability Exposed Sensitive Information Read More »

AWS Patches Vulnerabilities Potentially Allowing Account Takeovers

Account Takeover, AWS, Cloud, cloud security / SecurityTicks

AWS Patches Vulnerabilities Potentially Allowing Account Takeovers 2024-08-08 at 13:31 By Eduard Kovacs AWS has patched vulnerabilities in several products, including flaws that could have been exploited to take over accounts. The post AWS Patches Vulnerabilities Potentially Allowing Account Takeovers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

AWS Patches Vulnerabilities Potentially Allowing Account Takeovers Read More »

Enhancing threat detection for GenAI workloads with cloud attack emulation

Cloud, cloud security, cybersecurity, Don't miss, Expert analysis, Expert corner, generative AI, Hot stuff, Mitigant, News, opinion, threat detection / SecurityTicks

Enhancing threat detection for GenAI workloads with cloud attack emulation 2024-07-29 at 08:01 By Help Net Security Cloud GenAI workloads inherit pre-existing cloud security challenges, and security teams must proactively evolve innovative security countermeasures, including threat detection mechanisms. Traditional cloud threat detection Threat detection systems are designed to allow early detection of potential security breaches;

React to this headline:

Enhancing threat detection for GenAI workloads with cloud attack emulation Read More »

The gap between business confidence and cyber resiliency

Cloud, cybersecurity, Don't miss, Hot stuff, hybrid cloud, Nasuni, strategy, Video / SecurityTicks

The gap between business confidence and cyber resiliency 2024-07-29 at 06:06 By Help Net Security In this Help Net Security video, Jim Liddle, Nasuni’s Chief Innovation Officer, discusses the findings of its new 2024 industry research report, The Era of Hybrid Cloud Storage. Key takeaways: Cloud strategies are at the forefront of enterprise success. Enterprises

React to this headline:

The gap between business confidence and cyber resiliency Read More »

Cloudy with a Chance of Cyberattack: Understanding LOTC Attacks and How ZTNA Can Prevent Them

Cloud, cloud security, ZTNA / SecurityTicks

Cloudy with a Chance of Cyberattack: Understanding LOTC Attacks and How ZTNA Can Prevent Them 2024-07-08 at 15:01 By Etay Maor With Living Off the Cloud (LOTC) attacks, hackers abuse APIs of trusted cloud services to remotely control botnets but also to make malicious traffic appear as trusted cloud traffic. The post Cloudy with a

React to this headline:

Cloudy with a Chance of Cyberattack: Understanding LOTC Attacks and How ZTNA Can Prevent Them Read More »

47% of corporate data stored in the cloud is sensitive

Cloud, cybersecurity, data, News, report, survey, Thales / SecurityTicks

47% of corporate data stored in the cloud is sensitive 2024-07-05 at 07:01 By Help Net Security As the use of the cloud continues to be strategically vital to many organizations, cloud resources have become the biggest targets for cyberattacks, with SaaS applications (31%), cloud storage (30%) and cloud management infrastructure (26%) cited as the

React to this headline:

47% of corporate data stored in the cloud is sensitive Read More »

4 key steps to building an incident response plan

Blumira, Cloud, Compliance, cybersecurity, Don't miss, Features, Hot stuff, Incident Response, News, opinion, resilience, strategy / SecurityTicks

4 key steps to building an incident response plan 2024-07-04 at 07:01 By Mirko Zorz In this Help Net Security interview, Mike Toole, head of security and IT at Blumira, discusses the components of an effective security incident response strategy and how they work together to ensure organizations can address cybersecurity issues. What are the

React to this headline:

4 key steps to building an incident response plan Read More »

Enterprises increasingly turn to cloud and AI for database management

Artificial Intelligence, Cloud, cybersecurity, database management, Don't miss, Hot stuff, News, Redgate, Video / SecurityTicks

Enterprises increasingly turn to cloud and AI for database management 2024-06-27 at 06:01 By Help Net Security Across various tasks, from predictive analytics to code generation, organizations in all sectors are exploring how AI can add value and increase efficiency. In this Help Net Security video, Ryan Booz, PostgreSQL Advocate at Redgate, discusses the key

React to this headline:

Enterprises increasingly turn to cloud and AI for database management Read More »

GenAI keeps cybersecurity pros on high alert

Bitdefender, Cloud, cybersecurity, News, report, survey, threat / SecurityTicks

GenAI keeps cybersecurity pros on high alert 2024-06-13 at 06:01 By Help Net Security “Businesses across every industry face unprecedented challenges posed by an increasing attack surface, zero-day vulnerabilities, cloud misconfigurations, and new emerging threats driven by AI,” said Andrei Florescu, president and GM of Bitdefender Business Solutions Group. “The findings of our recent survey

React to this headline:

GenAI keeps cybersecurity pros on high alert Read More »

Security and privacy strategies for CISOs in a mobile-first world

BYOD, CISO, Cloud, Compliance, cybersecurity, data security, Don't miss, Features, Hot stuff, human error, hybrid workforce, Lookout, mobile devices, News, opinion, strategy, threat / SecurityTicks

Security and privacy strategies for CISOs in a mobile-first world 2024-06-12 at 07:01 By Mirko Zorz In this Help Net Security interview, Jim Dolce, CEO at Lookout, discusses securing mobile devices to mitigate escalating cloud threats. He emphasizes that organizations must shift their approach to data security, acknowledging the complexities introduced by mobile access to

React to this headline:

Security and privacy strategies for CISOs in a mobile-first world Read More »

Cloud migration expands the CISO role yet again

CISO, Cloud, Compliance, cybersecurity, Don't miss, Expert analysis, Expert corner, framework, Hot stuff, News, opinion, RegScale, Risk Management / SecurityTicks

Cloud migration expands the CISO role yet again 2024-06-11 at 07:31 By Help Net Security The CISO role used to be focused primarily on information security — creating and implementing policies to safeguard an organization’s data and IT infrastructure from cybersecurity threats. However, as organizations rapidly migrate to cloud environments, the responsibilities and challenges for

React to this headline:

Cloud migration expands the CISO role yet again Read More »

Microsoft pours $2.2B into Malaysia for cloud, AI expansion

AI, AI A, AI-skilling, Cloud, cybersecurity, data center, Europe, GDP, infrastructure, investment, Kearney, Malaysia, Microsoft, Prime Minister Anwar Ibrahim, Satya Nadella, Southeast Asia, Technology / SecurityTicks

Microsoft pours $2.2B into Malaysia for cloud, AI expansion 2024-05-02 at 13:01 By Cointelegraph by Amaka Nwaokocha In a statement, Microsoft said it will collaborate with the Malaysian government to establish a “national AI Center of Excellence” and improve cybersecurity capabilities. This article is an excerpt from Cointelegraph.com News View Original Source React to this

React to this headline:

Microsoft pours $2.2B into Malaysia for cloud, AI expansion Read More »