Cloud Security
Cloud Security | News, how-tos, features, reviews, and videos
Akamai releases new threat hunting tool backed by Guardicore capabilities
Akamai Hunt combines the company’s historic DNS, WAF, and DDoS data with Guardicore’s segmentation and telemetry to detect and eliminate evasive threats.
HPE to acquire Axis Security to deliver a unified SASE offering
HPE plans to expand its Aruba SASE platform with Axis Security’s Atmos, delivering a comprehensive edge-to-cloud, network and security solution as a service.
Gitpod flaw shows cloud-based development environments need security assessments
The quickly fixed flaw could have allowed attackers to take over accounts in the CDE and perform remote code execution.
How automation in CSPM can improve cloud security
Automation capabilities in cloud security posture management platforms can speed the process of monitoring and remediating security and compliance risks.
Defending against attacks on Azure AD: Goodbye firewall, hello identity protection
Gone are the days when a good firewall was key to keeping attackers out of a network. Azure Active Directory users need to know the new weak spots in identity authentication and protection and how to mitigate attacks.
Cohesity Data Cloud 7.0 enhances privileged access authentication, ransomware recovery
Vendor announces the 7.0 software release of its Cohesity Data Cloud platform with a focus on “data-centric” cyber resilience.
Misconfiguration and vulnerabilities biggest risks in cloud security: Report
About 87% of container images include a high or critical vulnerability, while 90% of granted permissions are not used, according to cybersecurity firm Sysdig.
9 API security tools on the frontlines of cybersecurity
Top API security tools can help hold the line against modern threats to the important and ubiquitous software development interfaces.
Skyhawk launches platform to provide threat detection and response across multi-cloud environments
Skyhawk says the Synthesis CDR platform employs machine learning aimed at eliminating alert fatigue with runtime protection of cloud infrastructure.
F5 expands security portfolio with App Infrastructure Protection
AIP goes one step further than API security and provides telemetry collection and intrusion detection for cloud-native workloads.
Lacework adds new capabilities to its CSPM solution
The new capabilities will allow organizations to create custom policies for AWS, Google Cloud, and Azure to secure their cloud infrastructure.
Wiz debuts PEACH tenant isolation framework for cloud applications
The framework is designed to help address and secure cross-tenant vulnerabilities in multi-tenant cloud applications.
Uptycs launches agentless cloud workload scanning
Double-barreled API- and agent-based scanning is now available from cloud security company Uptycs.
Ransomware attack knocks Rackspace’s Exchange servers offline
Rackspace’s hosting for Exchange servers remained offline Tuesday after an outage Friday that the company now ascribes to a ransomware attack.
Researchers found security pitfalls in IBM’s cloud infrastructure
A demonstrated attack by cybersecurity researchers in IBM’s cloud infrastructure allowed them access to the internal server used to build database images for customer deployments.
Fortanix unveils AWS integration for centralized key management
Multicloud users have a new option for encryption key management across platforms, with the news that Fortanix has now integrated AWS support.
AWS' Inspector offers vulnerability management for Lambda serverless functions
AWS announces new cybersecurity features in Amazon Inspector and Amazon Macie at AWS Re:Invent 2022 in Las Vegas.
ForgeRock set to roll out new IAM capabilities designed for the cloud
Automation and AI are the headliners for ForgeRock’s new IAM platform, which aims to simplify an increasingly complex identity and security landscape.
Meta’s new kill chain model tackles online threats
Meta researchers say their Online Operations Kill Chain framework offers a common taxonomy to understand the threat landscape and spot vulnerabilities.
