Cloud Security
Cloud Security | News, how-tos, features, reviews, and videos
Palo Alto adds software composition analysis to Prisma Cloud to boost open-source security
Palo Alto Networks has added a new SCA solution to Prisma Cloud to help developers safely use open-source software components. The vendor has also introduced a software bill of materials.
Excess privilege in the cloud is a universal security problem, IBM says
A new report from IBM said that elevated permissions and role identities in the cloud are present in nearly all successful compromises performed by the company’s X-Force Red penetration testing team.
New Sysdig cloud security software prioritizes risk, cuts remediation time
The cloud security posture management (CSPM) offering comes with ToDo, an actionable checklist showing prioritized risks, and Remediation Guru, guided remediation at the source.
One-third of enterprises don’t encrypt sensitive data in the cloud
Organizations are struggling to keep up with ever-expanding cloud attack surfaces and increasing multicloud complexity, according to Orca Security research.
![Tech Spotlight > Cloud [CSO] > Conceptual image of laptop users with cloud security overlay.](https://images.idgesg.net/images/article/2021/06/spot_cloud_3x2_03_cso_laptop_users_with_ccloud_security_overlay__by_metamorworks_gettyimages-1132912672_b-100891925-small.3x2.jpg?auto=webp&quality=85,70)
CNAPP buyers guide: Top tools compared
Cloud native application protection platforms aim to provide a complete cloud security solution, but some are more complete than others.
Palo Alto adds new SaaS compliance, threat prevention, URL filtering features to Prisma solution
Cybersecurity vendor updates Prisma solution to help customers address increasing SaaS security challenges, along with detecting and preventing phishing, ransomware, and C2 attacks.
Five things security pros want from CNAPP
New research reveals what practitioners believe is most important for cloud security technology.
AWS, Google Cloud, and Azure: How their security features compare
Each cloud platform differs in the security tools and features it offers customers to help them protect their cloud assets.
Almost 50% of APAC companies find cloud security harder than on-prem: survey
Diversity of multicloud environments has contributed to operational and security complexity, a Thales report says.
Qualys adds external attack management capability to cloud security platform
Integration of EASM (external attack surface management) into Qualys CSAM (cybersecurity asset management) offers enterprises continuous discovery and classification of both internal and external assets.
Average cost of data breaches hits record high of $4.35 million: IBM
Healthcare organizations saw average cost per breach at $10.1 million, more than double the global average.
CrowdStrike enhances container visibility and threat hunting capabilities
The cloud-native security provider wants to help customers gain visibility into all of their containers, as well as uncover a growing array of threats across multicloud environments.
Orca adds detection and response capabilities to its agentless cloud security solution
New feature gives users full visibility into cloud environments to thwart workload and non-workload attacks.
Catalogic Software adds newer detection and backup capabilities
The new edition of the company’s data protection software DPX 4.8.1 adds backup for Microsoft 365 and other open virtualization platforms, including RedHat, Oracle, XenServer and KVM.
Wiz offers CVE-like cloud vulnerability registry, but will it gain traction?
The cloud vulnerability database, dubbed cloudvulndb.org and based on a GitHub repository, is seen as a welcome development, but widespread industry support is needed for it to be successful, analysts say.
11 top cloud security threats
More data and applications are moving to the cloud, which creates unique infosecurity challenges. Here are the "Pandemic 11," the top security threats organizations face when using cloud services.
Google Cloud previews advanced new API security features
Google’s latest security update for Google Cloud is aimed at curbing API-based attacks.
Key takeaways from CSA’s SaaS Governance Best Practices guide
Security and governance policies and practices are failing to keep up with the growth of SaaS usage. The Cloud Security Alliance's guidance aims to get that back on track.
Google Cloud gets new built-in security features
MITRE ATT&CK integration and baked-in DDoS prevention are now available in Google Cloud.
