ARMO adds CIS EKS benchmark
ARMO Platform has added the CIS EKS benchmark. Now, with Amazon Elastic Kubernetes Service (EKS) users can add this specific benchmark to the frameworks already available to them.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
How To Setup Velero Backups On EKS Using IAM Roles for Service Accounts (IRSA)
Velero is an open-source tool that allows you to backup and restore your Kubernetes cluster resources and persistent volumes. Velero backups support a number of different storage providers including AWS S3. The process of setting up Velero backup with S3 using AWS credentials has been documented by Velero here. However, at the time of this post, there is no official documentation on how to set up Velero using IRSA or IAM Roles for Service Accounts.
Account Takeover Vulnerability in Azure's API Management Developer Portal
How an Account Takeover vulnerability, discovered during a routine customer engagement, became a candidate for responsible disclosure, via the Microsoft Security Research Center Researcher Portal.
Mend & AWS CodeCatalyst Integration
Are you using AWS CodeCatalyst? Mend can integrate with your source control and quickly detect open source artifacts and their known vulnerabilities and licensing risks. Mend also provides all the information you need to fix these artifacts automatically.
How to get started with Cloudflare R2
Say goodbye to egress fees with R2 from Cloudflare. R2 Object Storage is S3-compaitable and allows developers to store large amounts of unstructured data without the costly egress bandwidth fees associated with typical cloud storage services.
GitGuardian Code Security Platform Now Available on AWS Marketplace
With GitGuardian available on AWS Marketplace, we’re making it easier for all organizations using AWS to protect their software supply chain from exposed secrets and credentials.
What is Cloudflare Argo Smart Routing?
Instantly improve site speed, reliability, and reduce cloud egress costs with minimal changes to your configuration with Argo Smart Routing from Cloudflare. Argo Smart Routing detects real-time congestion and routes web traffic across the fastest and most reliable network paths.
Cloud Threats Memo: Multiple Different Cloud Apps Abused in a Single Cyber Espionage Campaign
Threat actors continue to exploit cloud services for cyber espionage, and a new campaign by a threat cluster named WIP26, discovered recently by researchers at Sentinel One in collaboration with QGroup, targeting telecommunication providers in the Middle East, confirms this trend.
Securing Your Amazon S3 Buckets
Amazon Web Services (AWS) is the world’s largest cloud provider, with well over a million active users. The popularity of AWS makes it one of the biggest targets for cybercriminals — and one of the leading contributors to breaches is incorrectly configured Amazon S3 buckets. For example, an insecure bucket led to the unauthorized access of 23 million documents and 6.5 TB of data belonging to Pegasus Airlines.
MITRE ATT&CK and D3FEND for Cloud and Containers
MITRE ATT&CK and MITRE D3FEND are both frameworks developed by the non-profit organization MITRE, but they serve different purposes. If you are new to the MITRE ATT&CK framework and would like to brush up on some of the concepts first, we created a Learn Cloud Native article to help you on your journey. If you want to go further, here’s how Falco’s Cloudtrail rules align with MITRE ATT&CK.