The company uses graph-based tools and algorithms to analyze the security posture of an organization’s cloud stack, identifying misconfigurations or problematic permission policies in order plot out the most likely avenues of attack.
Researchers at Palo Alto’s Unit 42 have confirmed that they have compromised a customer’s AWS cloud account with thousands of workloads.
The deal is emblematic of how networking and application development have become increasingly tethered to one another in the marketplace.
To most effectively combat sophisticated and stealthy cyberattacks by advanced nation-state actors, today’s modern-day security operations center must first truly understand their own businesses, according to Monzy Merza, vice president of security research at Splunk. “They have to understand where the risks are, where the threats are based on the environment that they’re living. So…
A Connecticut man admitted to hacking into the iCloud accounts of prominent females celebrities including “Red Sparrow” actress Jennifer Lawrence and more than 200 others.
A GulfTech researcher spotted multiple vulnerabilities In Western Digital’s MyCloud products, some of which could lead to remote code execution and unauthorized access.
A pair of flaws dubbed Meltdown and Spectre that take advantage of the speculative execution performance feature in modern CPUs make the memory of virtually all computers and devices accessible to hackers. “The Meltdown [CVE-2017-5754] and Spectre [CVE-2017-5753 and CVE-2017-5715] exploitation techniques abuse speculative execution to access privileged memory—including that of the kernel—from a less-privileged user process…
Make-up company Tarte Cosmetics exposed the personal information of nearly two million online customers after two of its online MongoDB databases were reportedly misconfigured for public access.
Yet another company has mistakenly exposed its sensitive internal information after storing data on misconfigured cloud-based servers from Amazon Web Services. The culprit in this case – the $32.9 billion consulting and professional services company Accenture – was found to be insecurely storing data that, ironically, has to do with its own cloud-based enterprise solution,…
A bipartisan group of U.S. representatives from the House Information Technology Subcommittee has reintroduced the Modernizing Government Technology (MGT) Act designed to modernize the federal IT infrastructure while eliminating wasteful spending.
