Cloud Archives - Securezoo

Misconfigured Microsoft endpoint exposes sensitive data from 65K entities

Cloud Security, Configuration Management / By Frank Crast / October 21, 2022 / Azure, Blob Storage, BlueBleed, Bucket, Cloud, Cybersecurity Threat Center, SOCRadar

A misconfigured Microsoft endpoint has exposed sensitive data from 65,000 entities across 111 countries, researchers from SOCRadar have allegedly discovered.

Threat actor deploys malicious OAuth apps on compromised cloud tenants to spread spam

Access Control, Authentication, Cloud Security, Cybersecurity Attacks, Messaging Security / By Frank Crast / September 25, 2022 / AAD, Cloud, MFA, Microsoft, Oauth

Microsoft has been monitoring a threat actor deploying malicious OAuth apps on compromised cloud tenants to spread spam.

Report: Linux malware and cloud misconfigurations top cybersecurity threats

Cloud Security, Container Security, Cybersecurity Attacks, Malware / By Frank Crast / September 5, 2022 / BlackCat, Cheerscrypt, Cloud, Containers, Conti, ESXi, Linux, LockBit, LockBit 2.0, MaaS, malware, RaaS, Ransomware, Trend Micro

A new report published by Trend Micro revealed that Linux malware and cloud misconfigurations make up some of the top cybersecurity threats facing organizations over the first half of 2022.

cyber security, internet, hacking-3400555.jpg

DevSecOps best practices to secure cloud-native and microservices-based applications

Application Security, Cloud Security, Configuration Management, Cybersecurity Articles, Vulnerabilities & Exploits / By Frank Crast / March 12, 2022 / CI/CD, Cloud, Cybersecurity Threat Center, DevOps, DevSecOps, NIST, Service Mesh, SP 800-204C

The National Institute of Standards and Technology (NIST) has issued the NIST SP 800-204C “Implementation of DevSecOps for a Microservices-based Application with Service Mesh.” The guidelines include many best practices on how organizations and secure their CI/CD pipeline and enhance the software delivery processes.

CISA: Take these urgent steps to protect your organization against potential critical cybersecurity threats

Cloud Security, Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / January 20, 2022 / CISA, Cloud, Cybersecurity Threat Center, MFA

The Cybersecurity and Infrastructure Security Agency (CISA) has published a new CISA Insights guideline document with steps organizations can take against potential critical cybersecurity threats.

VMware patches Tanzu Application Service for VMs vulnerability (CVE-2021-22101)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 13, 2021 / Cloud, Cloud Foundry, CVE-2021-22101, Tanzu, VMware

VMware has issued a security fix for a VMware Tanzu Application Service for VMs vulnerability CVE-2021-22101.

Microsoft issues new guidance on OMI vulnerabilities within Azure VM Management extensions

Cloud Security, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / September 18, 2021 / Azure, Cloud, CVE-2021-38645, CVE-2021-38647, CVE-2021-38648, CVE-2021-38649, Microsoft, OMI, PaaS

Microsoft has published new guidance on Open Management Infrastructure (OMI) vulnerabilities within Azure virtual management (VM) Management extensions.

Doki malware targets exposed Docker servers in the cloud

Cloud Security, Configuration Management, Cybersecurity Attacks / By Frank Crast / July 29, 2020 / blockchain, C2, Cloud, Container, Cryptocurrency, Docker, Intezer, Linux, Ngrok

Security researchers at Intezer Labs detected a new Linux malware dubbed “Doki” and cyber attack that uses blockchain wallet for generating command and control (C2) domain names.

VMware security updates for ESXi, Workstation, Fusion, and Cloud Foundation (VMSA-2020-0015)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / June 25, 2020 / Cloud, Cloud Foundation, CVE-2020-3962, CVE-2020-3963, CVE-2020-3964, CVE-2020-3965, CVE-2020-3966, CVE-2020-3967, CVE-2020-3968, CVE-2020-3969, CVE-2020-3970, CVE-2020-3971, ESXi, VMware, Workstation

VMware issued a security advisory for ten vulnerabilities that impact VMware ESXi, Workstation, Fusion and Cloud Foundation products. An attacker could exploit one of these vulnerabilities and take control of an unpatched system.

NSA: Guidance to mitigate cloud vulnerabilities

Cloud Security, Configuration Management, Cybersecurity Articles, Third-Party Security / By Frank Crast / February 10, 2020 / Cloud, CSP, encryption, IAM, Key Management, least privilege, NSA, third party

The National Security Agency (NSA) has released guidelines to help organizations mitigate cloud vulnerabilities. The NSA document includes four classes of vulnerabilities at most risk to threat actors.