Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Recent reports reveal that up to 165 customers of Snowflake, a prominent cloud data warehousing platform, have fallen victim to a sophisticated data breach and extortion campaign. This ongoing operation, identified by cybersecurity firm Mandiant as UNC5537, underscores broader implications for cybersecurity practices in cloud environments. Understanding the UNC5537 Campaign.

Novel Attack Vector Uses Custom Shell for Payload Delivery and Execution A fresh variant of the Mallox ransomware has emerged, specifically targeting VMware ESXi environments with administrative privileges. This advanced attack method, discovered by researchers at Trend Micro, demonstrates the evolving sophistication of ransomware tactics. Mallox Ransomware: An Overview Mallox, also known as Fargo and Tohnichi, first emerged in June 2021.

Trust is fragile in software, especially in the fast-paced complexity of cloud environments. Code signing reinforces that trust by digitally proving your software’s authenticity and integrity. Breaches like the UnitedHealth Group incident remind us why this matters—compromised code has real-world consequences. The breach potentially exposed the sensitive health data of millions of Americans.

The US Cybersecurity and Infrastructure Security Agency (CISA) has warned that scammers are impersonating its employees in an attempt to commit fraud. In an alert posted on the CISA website, the organisation warned that so-called impersonation scams are on the rise. An impersonation scam is any type of fraud where a criminal pretends to be a trusted individual or organisation to dupe a victim into handing over personal information or money or taking an unwise action.

Let’s catch up on the more interesting vulnerability disclosures and cyber security news gathered from articles across the web this week. This is what we have been reading about on our coffee break! Didn’t take them long did it?

Google Cloud HSM (Hardware Security Module) is a cloud service offered by Google that delivers secure key storage and cryptographic operations within a hardware environment that is set apart from any other instances. In contrast to HSMs, these hardware devices originated for the purpose of keeping cryptographic keys safe and executing cryptographic operations in a secure, tamper-resistant manner.

Data safety has become a primary issue for business organizations of any scale as they move to cloud computing. With businesses using cloud services to save and run critical information, the development of confidence encryption and essential management techniques is paramount. Several security methods have become popular; bring your own key (BYOK) is among them.

Some organizations are just beginning their migration to the cloud, while others are already firmly settled there, but almost everyone is in the cloud in some capacity by now. And for good reason: the cloud creates substantial advantages in speed, scalability, and cost. But the sobering reality is that modern threat actors have also made gains from migrating to the cloud. By weaponizing cloud automation, these threat actors can fully execute an attack in 10 minutes or less.

In the rapidly evolving digital landscape, the maturity of an organization's Application Security (AppSec) program is not just beneficial; it's imperative for resilience at scale and reducing security debt accumulation. Since software is increasingly central to business operations, the need for robust AppSec programs has never been more critical. Here’s a guide to understanding the various stages of AppSec maturity and how to evolve through them for effective risk management.

Small and medium-sized businesses (SMBs) increasingly rely on mobile technology to drive efficiency and stay competitive. However, the use of mobile devices introduces security risks that SMBs must address. Recognizing this, CrowdStrike Falcon for Mobile now offers iOS unmanaged support, extending robust security to devices without the cost and complexities of traditional mobile device management (MDM). Let’s take a closer look.