Addressing Configuration Errors With CSPM and SSPM
Even though cloud computing isn’t all that new anymore, learning how to use it effectively can be overwhelming. It’s unfortunately very easy to make mistakes.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Cloud
How Cyber Threat Intelligence Can Help to Protect Against Cloud Security Threats
The coronavirus pandemic has accelerated the massive increase in using cloud computing services. As the world progresses through its online evolution, cloud computing services have become more of a necessity. However, along with businesses, cybercriminals have also seen this virtualization as a means of snagging more prey. The rapid increase in cloud computing services has made organizations face novel security challenges.
Lookout + Microsoft Azure Sentinel - Query Lookout threat intel from within Microsoft Azure Sentinel
See how you can easily query Lookout mobile threat intelligence by analyzing audit, device, and threat events from within Microsoft Azure Sentinel.
Lookout + Microsoft Azure Sentinel - Jump start mobile threat research using Lookout workbooks
Learn how to use Lookout workbook template to help you jumpstart your mobile threat analysis. You can modify and save workbooks so that you can keep them handy for each threat research scenario you need.
Lookout + Microsoft Azure Sentinel - Create an analytics rule to alert on threats
Watch how lookout uses a sample analytics rule to allow you to create threat alerts and automatically create security incidents from within Microsoft Azure Sentinel.
Cloud Threats Memo: BazarLoader Exploiting Popular Cloud Services
BazarLoader (sometimes referred to as BazaLoader) is a popular downloader among criminals, used to distribute multiple malicious payloads including Ryuk and Conti ransomware. According to a recent report by Phishlabs, during Q3 2021 this malware accounted for 24.7% of all attacks, earning the unwelcome accolade of being the most common payload.
Securing Google Cloud Platform with Sysdig
Together with Google Cloud, Sysdig reduces your cloud security risk. So you can confidently run your workloads on Google Cloud. Get started in minutes with Sysdig SaaS, and simplify security, compliance, and monitoring. Accelerate your growth with NO backend data management. # CSPM Sysdig is your centralized safe place to enhance cloud security posture. # Threat detection Plug in Google Cloud Audit logs And get started quickly with our out-of-the-box Falco rules.
DBatLoader: Abusing Discord to Deliver Warzone RAT
67% of the malware downloads Netskope blocks come from popular cloud applications being abused by attackers. One of the services commonly abused by threat actors is Discord, which is abused to host malware such as TroubleGrabber using public attachment URLs. In this blog post, we will analyze a recent DBatLoader (a.k.a. ModiLoader) sample that uses this technique on Discord to deliver a malware known as Warzone (a.k.a. Ave Maria), a Remote Access Trojan created in 2018.
5 Tips for the CISO Looking to Get a Handle on Cloud Security
Over the last 18 months, cloud application use has skyrocketed, with the average organisation with 500-2,000 employees now using 805 different cloud applications. This is a staggering level of new risk for CISOs to get their heads around. At the same time that cloud use has grown, so too have the efforts of malicious actors to target cloud applications which are all too often poorly secured and present a constant opportunity of unsecured data to compromise.