Cloud Security
Cloud Security | News, how-tos, features, reviews, and videos
Catalogic Software adds newer detection and backup capabilities
The new edition of the company’s data protection software DPX 4.8.1 adds backup for Microsoft 365 and other open virtualization platforms, including RedHat, Oracle, XenServer and KVM.
![Tech Spotlight > Cloud [CSO] > Conceptual image of laptop users with cloud security overlay.](https://images.idgesg.net/images/article/2021/06/spot_cloud_3x2_03_cso_laptop_users_with_ccloud_security_overlay__by_metamorworks_gettyimages-1132912672_b-100891925-small.3x2.jpg?auto=webp&quality=85,70)
Wiz offers CVE-like cloud vulnerability registry, but will it gain traction?
The cloud vulnerability database, dubbed cloudvulndb.org and based on a GitHub repository, is seen as a welcome development, but widespread industry support is needed for it to be successful, analysts say.
11 top cloud security threats
More data and applications are moving to the cloud, which creates unique infosecurity challenges. Here are the "Pandemic 11," the top security threats organizations face when using cloud services.
Google Cloud previews advanced new API security features
Google’s latest security update for Google Cloud is aimed at curbing API-based attacks.
Key takeaways from CSA’s SaaS Governance Best Practices guide
Security and governance policies and practices are failing to keep up with the growth of SaaS usage. The Cloud Security Alliance's guidance aims to get that back on track.
Google Cloud gets new built-in security features
MITRE ATT&CK integration and baked-in DDoS prevention are now available in Google Cloud.
Palo Alto adds out-of-band web application security features to Prisma Cloud
Vendor says new updates will help organizations better monitor and secure web applications without impacting performance.
Ransomware could target OneDrive and SharePoint files by abusing versioning configurations
A proof-of-concept exploit could make Office 365 or Microsoft 365 documents stored on OneDrive or SharePoint inaccessible.
![Tech Spotlight > Cloud [CSO] > Conceptual image of laptop users with cloud security overlay.](https://images.idgesg.net/images/idge/imported/imageapi/2022/05/16/16/spot_cloud_3x2_03_cso_laptop_users_with_ccloud_security_overlay__by_metamorworks_gettyimages-1132912672_b-100891925-small.3x2-100928038-small.3x2.jpg?auto=webp&quality=85,70)
RSA: Cisco launches SASE, offers roadmap for other cloud-based services
New Cisco services aim to simplify security operations with new as-a-service offerings.
HYAS brings security threat detection, response to production networks
HYAS Confront uses domain expertise and proprietary machine learning to monitor and detect anomalies in production network environments and improve visibility as applications move to the cloud.
Deepfence Cloud builds on ThreatStryker security observability platform
The SaaS version of ThreatStryker will build on its real-time observation and protection abilities, spanning multiple cloud and development instances.
Intel bets big on security as a service for confidential computing
At its inaugural Vision event, Intel launched a security as a service initiative called Project Amber for confidential computing in the cloud, and outlined its support for secure and responsible AI and quantum-resistant cryptography....
Progress launches Chef Cloud Security to extend DevSecOps to cloud-native assets
The software provider has also enhanced its underlying security and compliance mechanism Chef InSpec with new features.
Wrongly configured Google Cloud API potentially creates dangerous functionality
Misconfiguration of the Google Cloud Platform API could create an exploitable behavior that leads to service compromise.
Firms struggling with non-person identities in the cloud
Enterprises turning to cloud identity governance, cloud infrastructure entitlements management. and AI-driven investigation, behavioral detection programs to treat cloud security ailments.
New SDP 2.0 specification facilitates zero-trust maturity
The Cloud Security Alliance's Software-Defined Perimeter 2.0 specification creates a path to a zero-trust approach through strong access controls.
The cloud security emperor has no pants
“Shared responsibility” usually means that no one is responsible for minding the gap. Don’t fall in.
Verica launches Prowler Pro solution to enhance AWS security
Verification vendor Verica and Prowler creator say enterprise-grade solution provides enhanced cloud security and new open-source tools.
Managing container vulnerability risks: Tools and best practices
The sooner you can identify vulnerabilities in containers, the better, and this advice on practices and tools can help.
