AttachMe : Critical OCI Vulnerability
A new vulnerability in Oracle Cloud Infrastructure (OCI) dubbed AttachMe would allow unauthorized access to cloud storage volumes of all users, hence violating cloud isolation. Oracle said that within 24…
AWS IAM Identity Center API
AWS debuted IAM Identity Center APIs to create users and groups enmass. Administrators can use these new APIs to manage identities programmatic and gain visibility into users in the Identity Center…
AWS Wickr – Encrypted Communication Service
Amazon announced the preview of the collaboration suite AWS Wickr. The new managed service provides enterprises and government agencies with security and administrative controls to meet security and compliance requirements.…
Zscaler CNAPP – Posture Control
Zscaler has launched its new cloud native application protection platform (CNAPP) solution, called Posture Control. CNAPP makes life easy in public cloud risk mitigation by pulling in signals from different sources…
Google VMTD now General available
Google announced the general availability of VMTD (Virtual Machine Threat Detection), a service that can detect if hackers attempt to use a company’s cloud environment to mine cryptocurrency. VMTD can…
Google Cloud – Curated Detections suite
Google Cloud announced the general availability of a new threat intelligence solution in the Chronicle secops suite: Curated Detections. The solution will provide security teams with detections created by the…
Cross Site Scripting Vulnerability found in Google Cloud and Play
Vulnerabilities existed in Google Cloud, DevSite, and Google Play could have allowed attackers to achieve cross-site scripting attacks, opening the door to account hijacks. These discoveries made researcher to earn…
O365 Cookies hijacked to perform Financial Fraud
A massive phishing campaign has been targeting Office 365 users since September 2021 and successfully bypassing MFA set up to protect the accounts. The attackers use proxy servers and phishing…