Identity plays a major role in cloud security and can open the door for serious cybersecurity problems from the inside ... Read More

For threat actors targeting cloud environments, cryptomining is a favored way to make money to fuel cybercriminal activity ... Read More

Applying on-premises security practices for cloud environments can create more risk. There are differences that must be considered ... Read More

Knowing who the threat actors are, how they are getting into your cloud environment and where your vulnerabilities are is a starting point to improving cloud security ... Read More

As threat actors continue to home in on APIs as favored attack vectors, security teams are tasked with finding ways to thwart those efforts ... Read More

The security world is in the early stages of figuring out how to best use generative AI to enhance cybersecurity—while simultaneously defending against it as an emerging threat vector. Take API security, for example. In a recent Security Boulevard feature, Bill Doerrfeld argued that generative AI will be a threat ... Read More

Until there is a deeper understanding about why API security is such a struggle, they will be vulnerable to attacks ... Read More

APIs are not only increasingly under attack, but the complexity, consistency and overall number of those attacks are escalating ... Read More

Splunk's Boss of the SOC (BOTS) exercise helps cybersecurity pros show off skills and also serves as a valuable recruiting tool ... Read More

Everyone wants to make their work processes easier. A step that many developers take to provide simpler access to their workflows is to embed credentials directly into the code. It’s not hard to understand why developers do this–as more applications become cloud-native and need to authenticate to more third-party APIs, ... Read More