Cloud Security News, Articles and Updates

Office 365 joke: KnockKnock, Who's there? Botnet malware

Microsoft's already battered Office 365 is once again being targeted, this time by KnockKnock, a botnet attack designed to specifically victimize the office productivity software suite.

Top 10 Security Challenges for 2017

The first half of 2017 has not exactly been a ride in the park for cybersecurity professionals.

Millions of Dow Jones customer records exposed due an internal error

A misconfigured database on an Amazon S3 server may have exposed the data of between two and four million Dow Jones & Co. customers, a report on the incident stated.

Data breach at Oklahoma U impacts 30K students

Lax privacy settings in a campus file-sharing network led to an unintentional exposure of the educational records of thousands of students at the University of Oklahoma.

Here comes the cloud...and it's all right

When it comes to cloud data storage the jury has handed in its verdict and the case is closed. The cloud is the future home for data storage for almost every company and organization, both large and small.

Mixed response from IT security pros following release of Cybersecurity Executive Order

The president's executive order on cybersecurity has drawn immediate, if mixed reactions, from cybersecurity pros who either praise it for providing much-needed guidance or criticize it for falling short.

First Look: Joe Security Joe Sandbox Cloud

From time to time we run across a product or service, purely serendipitously, that knocks our virtual socks off. Joe Sandbox Cloud is one such product.

Data of up to 1M auto loan customers across U.S. exposed

An unsecured database left exposed on an Amazon server revealed PII of up to one million applicants for car loans.

Data siphoned via Bose wireless headphones constitutes wiretapping, lawsuit charges

Bose, the audio equipment manufacturer, was sued in a federal court in Chicago earlier this week for selling user data without permission.

Apple's App Store found housing third-party app store

Third-party app stores are using a new method of subterfuge enabling them to be legitimately placed inside Apple's official App Store.

Zscaler fixes XSS vulnerability in admin portal affecting co-workers

Cloud security vendor fixes cross-site-scripting bug, downplays the threat, says it would only affect co-workers.

Cloudflare patches bug that dumped data, but...

One errant character in a coding string caused a buffer overrun which, in turn, led to a memory leak that dumped personal data in plaintext from a variety of Cloudflare's customers' sites.

Rogue apps plague IT teams, survey finds

IT security teams are unaware of nearly two-thirds of custom apps, according to a new report from the Cloud Security Alliance (CSA) and Skyhigh Networks.

The cloud goes Hollywood: Film production company tests migration of network to cloud

Determined not to be the next Sony Pictures, film production company New Regency Productions is currently testing a proof-of-concept for moving its business operations to the cloud, while securing its creative content and employee information with access management techniques.

One third of U.S. companies breached last year, study

A third of companies in the U.S. were breached in 2016, according to a study from Bitdefender issued on Tuesday.

Airline booking software vulnerable to cyberattack, report

Security Research Labs found that the three computer systems responsible for booking about 90 percent of all airline trips worldwide can expose passenger information due to several legacy flaws.

Data of SMBs at risk in free cloud storage, study

A significant percentage of SMBs are taking advantage of the convenience and cost savings afforded by free cloud storage solutions, according to a new study, but the security of stored information, particularly financial data and health records, could be at risk.