What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-03-31 21:34:00 | Elastic étend les capacités de sécurité du cloud pour AWS [Elastic Expands Cloud Security Capabilities for AWS] (lien direct) | Lance CSPM, la sécurité de la charge de travail des conteneurs et la gestion de la vulnérabilité cloud pour moderniser les opérations de sécurité cloud.
Launching CSPM, container workload security, and cloud vulnerability management to modernize cloud security operations. |
Vulnerability Cloud | ★★★ | |
|
2023-03-30 18:58:13 | Microsoft patchs \\ 'dangereux \\' rce flaw in azure cloud service [Microsoft Patches \\'Dangerous\\' RCE Flaw in Azure Cloud Service] (lien direct) | La vulnérabilité aurait permis à un attaquant non authentifié d'exécuter du code sur un conteneur hébergé sur l'un des nœuds de la plate-forme \\.
The vulnerability would have allowed an unauthenticated attacker to execute code on a container hosted on one of the platform\'s nodes. |
Vulnerability Cloud | ★★ | |
|
2023-03-28 17:05:00 | Kimsuky de la Corée du Nord évolue en APT à part entière et prolifique [North Korea\\'s Kimsuky Evolves into Full-Fledged, Prolific APT] (lien direct) | Dans les cyberattaques contre les États-Unis, la Corée du Sud et le Japon, le groupe (alias APT43 ou Thallium) utilise des tactiques avancées d'ingénierie sociale et de cryptomiminage qui le distinguent des autres acteurs de la menace.
In cyberattacks against the US, South Korea, and Japan, the group (aka APT43 or Thallium) is using advanced social engineering and cryptomining tactics that set it apart from other threat actors. |
Threat Cloud | APT 37 APT 43 | ★★★★ |
|
2023-03-28 00:00:00 | CISA publie un outil de chasse aux services cloud de Microsoft \\ [CISA Releases Hunt Tool for Microsoft\\'s Cloud Services] (lien direct) | CISA a publié l'outil de chasse et de réponse pour aider les défenseurs à extraire des artefacts de cloud sans effectuer d'analyses supplémentaires.
CISA released the hunt and response tool to help defenders extract cloud artifacts without performing additional analytics. |
Tool Cloud | ★★★★ | |
|
2023-03-27 17:26:04 | La conduite vers le cryptage omniprésent stimule la gestion clé [Drive to Pervasive Encryption Boosts Key Management] (lien direct) | Key Vaults, AKA Key Management As A Service (KMAAS), promettez de permettre aux entreprises de crypter des données sensibles à travers le cloud et les tiers avec un contrôle granulaire.
Key vaults, aka key management as a service (KMaaS), promise to allow companies to encrypt sensitive data across cloud and third parties with granular control. |
Cloud | ★★ | |
|
2023-03-22 22:13:00 | Lightspin lance le centre d'assainissement pour identifier et réparer les menaces de sécurité du cloud [Lightspin Launches Remediation Hub to Identify and Fix Cloud Security Threats] (lien direct) | Pas de details / No more details | Cloud Cloud | ★★ | |
|
2023-03-22 21:06:00 | (Déjà vu) XM Cyber annonce l'acquisition de Confluera, ajoutant une protection d'exécution sur les charges de travail cloud [XM Cyber Announces Acquisition of Confluera, Adding Run-Time Protection on Cloud Workloads] (lien direct) | Pas de details / No more details | General Information Cloud | ★★ | |
|
2023-03-20 14:00:00 | Shouldering the Increasingly Heavy Cloud Shared-Responsibility Model (lien direct) | There are a number of solutions that can help ensure security and compliance mandates are met in the cloud, but organizations should prioritize integration and policy-based management. | Cloud | ★★ | |
|
2023-03-14 21:05:00 | Samsung Next Invests in Mitiga, Brings Total Funding to $45M (lien direct) | Financing will help support increasing customer demand while continuing to transform incident response for cloud and SaaS environments | Cloud | ★★ | |
|
2023-03-08 22:24:00 | Edgeless Systems Raises $5M to Advance Confidential Computing (lien direct) | Confidential computing will revolutionize cloud security in the decade to come and has become a top C-level priority for industry leaders such as Google, Intel and Microsoft. Edgeless Systems is leading these advancements to ensure all data is always encrypted. | Guideline Cloud | ★★ | |
|
2023-03-08 15:10:00 | Surge in Cloud Adoption Means a Greater Data Attack Surface for Healthcare and Financial Services (lien direct) | Organizations in both industries are falling short when addressing new challenges to protect data in the cloud, finds Blancco report. | Cloud | ★★ | |
|
2023-03-08 15:00:00 | Rising Public Cloud Adoption Is Accelerating Shadow Data Risks (lien direct) | Using a risk-based approach to deal with policy violations and continuous compliance monitoring will help avoid data exposures and fines. | Cloud | ★★ | |
|
2023-03-07 16:07:22 | Remcos RAT Spyware Scurries Into Machines via Cloud Servers (lien direct) | Attackers use phishing emails that appear to come from reputable organizations, dropping the payload using public cloud servers and an old Windows UAC bypass technique. | Cloud | ★★★ | |
|
2023-03-06 18:10:00 | SANS Institute Partners With Google to Launch Cloud Diversity Academy (lien direct) | Pas de details / No more details | Cloud | ★★★ | |
|
2023-03-03 15:00:00 | It\'s Time to Assess the Potential Dangers of an Increasingly Connected World (lien direct) | With critical infrastructures ever more dependent on the cloud connectivity, the world needs a more stable infrastructure to avoid a crippling cyberattack. | Cloud | ★★★ | |
|
2023-03-02 23:26:00 | Axis Security Acquisition Strengthens Aruba\'s SASE Solutions With Integrated Cloud Security and SD-WAN (lien direct) | Pas de details / No more details | Cloud | ★★★ | |
|
2023-03-02 17:00:00 | New Report: Inside the High Risk of Third-Party SaaS Apps (lien direct) | A new report from Adaptive Shield looks at the how volume of applications being connected to the SaaS stack and the risk they represent to company data. | Cloud | ★★★ | |
|
2023-03-01 22:50:00 | (Déjà vu) DoControl\'s 2023 SaaS Security Threat Landscape Report Finds Enterprises and Mid-Market Organizations Have Exposed Public SaaS Assets (lien direct) | Volume of SaaS assets and events magnifies risks associated with manual management and remediation. | Threat Cloud | ★ | |
|
2023-03-01 18:33:26 | What Happened in That Cyberattack? With Some Cloud Services, You May Never Know (lien direct) | More cyberattackers are targeting organizations' cloud environments, but some cloud services, such as Google Cloud Platform's storage, fail to create adequate logs for forensics. | Cloud | ★★★ | |
|
2023-02-28 22:32:00 | LastPass DevOps Engineer Targeted for Cloud Decryption Keys in Latest Breach Revelation (lien direct) | The adversaries obtained a decryption key to a LastPass database containing multifactor authentication and federation information as well as customer vault data, company says. | Cloud | LastPass | ★★ |
|
2023-02-28 17:43:44 | Pernicious Permissions: How Kubernetes Cryptomining Became an AWS Cloud Data Heist (lien direct) | The opportunistic "SCARLETEEL" attack on a firm's Amazon Web Services account turns into targeted data theft after the intruder uses an overpermissioned service to jump into cloud system. | Cloud | Uber | ★★ |
|
2023-02-27 22:00:00 | Wiz Reaches $10B Valuation With Consolidated Cloud Security Platform (lien direct) | Cloud security vendor Wiz has raised $900 million since its founding in 2020. | Cloud | ★★★ | |
|
2023-02-24 21:19:00 | Tackling Software Supply Chain Issues With CNAPP (lien direct) | The cloud-native application protection platform market is expanding as security teams look to protect their applications and the software supply chain. | Cloud | ★★★ | |
|
2023-02-23 17:00:00 | Top Takeaways From CloudNativeSecurityCon 2023 (lien direct) | CloudNativeSecurityCon North America 2023 was a vendor-neutral cloud-native security conference. Here's why it was important. | Cloud | ★★★★ | |
|
2022-09-21 18:36:17 | Sophisticated Hermit Mobile Spyware Heralds Wave of Government Surveillance (lien direct) | At the SecTor 2022 conference in Toronto next month, researchers from Lookout will take a deep dive into Hermit and the shadowy world of mobile surveillance tools used by repressive regimes. | Cloud | APT 37 | |
|
2018-06-04 16:54:00 | (Déjà vu) US-North Korea Summit News Used as Lure In New Malware Campaign (lien direct) | Previously known threat actor Group 123 likely behind NavRAT malware, security vendor says. | Cloud | APT 37 | |
|
2018-06-04 16:54:00 | US-North Korea Summit News Being Used as Lure In New Malware Campaign (lien direct) | Previously known threat actor Group 123 likely behind NavRAT malware, security vendor says. | Cloud | APT 37 |
To see everything:
Our RSS (filtrered)
