Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Cloud

What is AWS EC2? Everything about EC2 Fundamentals in AWS

Elastic Compute Cloud (EC2) is an Amazon Web Services (AWS) hosting service that extends scalable and secure virtual computing systems known as instances. They allow users to have their applications hosted in a scalable environment whereby computing resources can be easily scaled up or down as necessary. EC2 provides several instance types that can handle a variety of uses, from general-purpose and compute instances to those designed for memory-intensive applications.

Cloud Security Myths in Online Music Streaming

The way music streams online often feels like magic. Artists upload songs, listeners hit play, and the melodies reach your ears instantly. Behind that ease lies a sophisticated cloud infrastructure. Many misunderstand this system, especially around security in music streaming platforms. Some fear losing control of their creations or worry about piracy risks tied to the cloud. But what's true? What's just a myth?

Sweet Security Introduces Patent-Pending LLM-Powered Detection Engine, Reducing Cloud Detection Noise to 0.04%

Sweet Security, a leader in cloud runtime detection and response, today announced the launch of its groundbreaking patent-pending Large Language Model (LLM)-powered cloud detection engine. This innovation enhances Sweet's unified detection and response solution, enabling it to reduce cloud detection noise to an unprecedented 0.04%. Sweet uses advanced AI to help security teams navigate complex and dynamic environments with improved precision and confidence.

The Critical Evolution of Cloud Detection and Response

Cloud security has reached an inflection point. Organizations have accelerated their cloud adoption and must navigate a complex threat landscape where workloads spin up and down in seconds, applications deploy continuously and identities span multiple services and providers.

Demonstrating reduction of vulnerability classes: a key step in CISA's "Secure by Design" pledge

In today’s rapidly evolving digital landscape, securing software systems has never been more critical. Cyber threats continue to exploit systemic vulnerabilities in widely used technologies, leading to widespread damage and disruption. That said, the United States Cybersecurity and Infrastructure Agency (CISA) helped shape best practices for the technology industry with their Secure-by-Design pledge.

Ransomware Campaign Encrypting Amazon S3 Buckets using SSE-C

On January 13, 2025, Halcyon released a research blog about the Codefinger group conducting a ransomware campaign targeting Amazon S3 buckets. The attacks leverage AWS’s Server-Side Encryption with Customer Provided Keys (SSE-C) to encrypt data. The threat actors then demand ransom payments for the symmetric AES-256 keys required to decrypt it.

The Five Best Cloud Storage for Business Providers in 2025

Businesses are generating more data than ever, with 60% of company data being stored in the cloud, and businesses are storing 48% of their most important and sensitive data using some form of cloud storage. Even though businesses are using cloud storage, the risk of data breaches or attacks on company data is at the highest it's ever been, with 24% of breaches involving personal data and costing companies, on average, $4.88 million.

John Graham-Cumming at Web Summit: Empowering developers - Focus on innovation, not infrastructure

More and more companies are moving away from traditional cloud architecture to envision a new cloud that's more specialised to individual workloads and data needs, but what does it take to build more personalised and streamlined infrastructure? Join Cloudflare CTO John Graham-Cumming as he explores the next generation of cloud architecture and breaks down how it will lessen developers' burdens.

John Graham-Cumming at WebSummit: Making security simple

In today’s modern workplace, employees connect from anywhere, often using both personal and company devices and a mix of managed and unmanaged apps to stay productive. This dynamic creates a patchwork of unsecured endpoints and raises the stakes for data protection. Cultivating a seamless security culture requires solutions that blend naturally with how people work. How can we make security behaviours effortless, so they become second nature, embedding safety at every level of the organisation?