Sonrai Security said it is launching cloud workload protection capabilities in its Sonrai Dig platform to safeguard users in the public cloud, according to VentureBeat.
According to Sonrai CEO Brendan Hannigan, the company's emphasis on identity to ensure data security, achieved through the identity graph in its existing cloud protection platform, is now being applied to cloud workload protection to enable users to find connections between their workload risks and identity risks.
"When you do that, you can now see where workload risk is also tied to risks related to identity and privilege," Hannigan said. "You can also see where risk is tied to access to sensitive data. Those are two things which nobody else can see because they don't have a graph like this."
The Sonrai Dig platform was also enhanced with data security, cloud security posture management allowing customers to identify cloud infrastructure misconfigurations and cloud infrastructure entitlements management for management of cloud permissions and identities.
As companies migrate to the cloud, the industry needs a new way to manage data and network security, but security analysts warn that only the most well-heeled enterprises can afford the new zero-trust open approach Oracle touts.
Operators of the Bumblebee malware loader have launched a new campaign involving the exploitation of 4shared Web Distributed Authoring and Versioning services following a two-month hiatus, according to BleepingComputer.
Infrequently used Amazon Web Services products AWS Fargate, AWS Amplify, and Amazon SageMaker, have been targeted by the new Indonesian cloud-native cryptojacking operation AMBERSQUID for cryptomining activities, according to The Hacker News.