Hot Topics

Cloud Security

Cloud Security

cyberattacks, cybersecurity, MFA CISA multi-factor authentication

DirectDefense Report Sees Shifts in Cyberattack Patterns

| | cyberattacks, Cybersecurity, MFA, muticloud, social engineering
Cyberattacks are continuing to become more sophisticated even as defenders become more adept at thwarting existing threats ...
Security Boulevard
UnitedHealth ransomware health care

UnitedHealth: Ransomware Attackers Stole Huge Amount of Data

| | healthcare, PHI, pii, Ransomware, UnitedHealth
The health insurance giant also admitted that it paid a ransom to the threat group as its CEO prepares to testify before Congress May 1 ...
Security Boulevard
Akira ransomware

Akira Ransomware Group Takes in $42 Million From 250 Attacks in a Year

| | Akira, cisa, Linux, Ransomware
CISA and the FBI profile a highly adaptable and constantly evolving threat gang that targets both Windows and Linux systems ...
Security Boulevard
U.S. Capitol Dome at sunset

House Passes Privacy-Preserving Bill, but Biden Blasts it

| | 4th Amendment, adtech, Advertising and AdTech, Biden, Biden administration, Biden-Harris, Congress, congressional legislation, Data Broker, Data broker regulations, Data Brokers, foreign adtech, Fourth Amendment, Fourth Amendment is Not For Sale Act (FANFSA ), H.R. 4639, House of Representatives, Joe Biden, national security, national security policy, President Biden, SB Blogwatch, US Congress, White House
Are you a FANFSA fan? The White House isn’t. It says the bill “threatens national security.” ...
Security Boulevard

Ahoi Attacks: A New Threat to Confidential VMs in the Cloud

| | Ahoi Attacks, cloud environments, Cloud Infrastructure, Cloud Security, Cloud Threats, Confidential VMs, CVE-2024-25742, CVE-2024-25743, CVE-2024-25744, cybersecurity threats, enterprise security, Heckler, Linux & Open Source News, Linux kernel, SEV-SNP, WeSee
Researchers from ETH Zurich have uncovered a new attack method dubbed “Ahoi Attacks” that threatens the security of confidential virtual machines (CVMs) within cloud environments. Described as a family of attacks, there ...
TuxCare
Understanding Cloud-Native Security and Its Business Benefits

Understanding Cloud-Native Security and Its Business Benefits

| | Cloud Security, Cloud-Native Security for Businesses, Guest Blogs, Uncategorized, Understanding Cloud-Native Security
An increasing proportion of critical business infrastructure today exists in the cloud. Companies are investing more and more in digital assets and tools every day. In some industries, workflows are entirely cloud ...
TuxCare

CSBR Slams Microsoft Over Storm-0558 Attacks | Key Insight

| | Cloud Security, CSBR, cyber attacks, cyber defense, Cybersecurity, Cybersecurity News, Data breach, Incident Response, Microsoft, nation state threats, risk management, Security Lapses, Storm-0558, Technology Industry, Vulnerability Management
In recent news, the U.S. Cyber Safety Review Board (CSBR) has raised concerns over Microsoft’s handling of the Storm-0558 attacks, highlighting significant security lapses that allowed a China-based nation-state group to breach ...
TuxCare
credential stuffing password

Roku: Credential Stuffing Attacks Affect 591,000 Accounts

| | credential stuffing attack, , Roku
Almost 600,000 Roku customers had their accounts hacked through two credential stuffing attacks several weeks apart, illustrating the ongoing risks to people who reuse passwords for multiple online accounts. The streaming service ...
Security Boulevard
shadow AI, security, Cisco cybersecurity

Shadow AI: The Murky Threat to Enterprise Adoption of Generative AI

| | ai acceptable use policies, Data Privacy, GenAI, generative AI, security, Shadow AI
As AI continues its relentless march into enterprises, an insidious threat lurks in the shadows that could undermine its widespread adoption: Shadow AI ...
Security Boulevard
Seal of the Cybersecurity & Infrastructure Security Agency

Sisense Hacked: CISA Warns Customers at Risk

| | Amazon Web Services (AWS), aws, AWS access keys, AWS bucket, cisa, CISA Advisories, CISA Advisory, CISA Alert, CISA warning, CISA.gov, depth, NSA/CISA, Sangram Dash, SB Blogwatch, Sisense
A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.” ...
Security Boulevard
Load more

Secure Guardrails