Cloud

Cloud Threats Memo: Hancitor Continues Exploiting DocuSign and Google Docs Templates

Jul 15, 2021 By Paolo Passeri In Netskope

Hancitor continues to exploit fake DocuSign emails to lure new victims. Researchers from Cofense have discovered yet another campaign distributing it, and apparently, that’s not the only one.

Read Post

Netskope

Read more about Cloud Threats Memo: Hancitor Continues Exploiting DocuSign and Google Docs Templates

How to Build Your Cyber Crystal Ball Using Step-by-Step, Systematically Modeled Threats

Jul 15, 2021 By James Robinson In Netskope

2020 was a tough year. As security leaders, we faced new challenges in protecting applications and users who were shifting rapidly off-premises and into the cloud, and our security teams’ workloads grew at an unprecedented rate. In 2021 and 2022, CISOs need to prioritize ensuring that we’re focused on the right things.

Read Post

Netskope

Read more about How to Build Your Cyber Crystal Ball Using Step-by-Step, Systematically Modeled Threats

The Network Leader's Punch List for Returning to the Office

Jul 14, 2021 By Hansang Bae In Netskope

Over the last year and a half, we all went through the monumental disruption of having just about everyone work from remote locations. We strained VPN infrastructure and out of necessity split tunnels became the norm, not the exception. Even if it meant the users were a bit more exposed, you really had no choice, as Zoom/Webex/Teams meetings can eat up bandwidth like nobody’s business. But now the users are starting to come back into the office, what’s the big deal?

Read Post

Netskope

Read more about The Network Leader's Punch List for Returning to the Office

Deploying Rubrik Cloud Cluster from the AWS Marketplace

Jul 14, 2021 By Rubrik In Rubrik

Deploying a Rubrik Cloud Cluster on AWS has never been easier! Watch this video to learn how you can utilize the AWS Marketplace to easily deploy a fully configured 4 node Rubrik cluster in the cloud. Running Rubrik data management software in the cloud enables many features such as backup of Cloud Native NAS filesystems, VMC on AWS protection, point-in-time recovery of SQL, Oracle or SAP Hana and much more...

View Video

Rubrik

Read more about Deploying Rubrik Cloud Cluster from the AWS Marketplace

Inside the Netskope NewEdge Data Center Factory

Jul 13, 2021 By Patrick Bohannon In Netskope

Over the last year, we’ve published a number of blogs talking about NewEdge, the network or infrastructure upon which we deliver the Netskope Security Cloud services, and comparing it to other approaches cloud security vendors have taken.

Read Post

Netskope

Read more about Inside the Netskope NewEdge Data Center Factory

Protecting Your Business Against Malware in the Cloud

Jul 13, 2021 By Tripwire Guest Authors In Tripwire

There are multitudes of advantages that the cloud has to offer to companies. These include making the task of security management more accessible. However, there are still many gray areas associated with the cloud and its implications for an organization’s overall security.

Read Post

Tripwire

Read more about Protecting Your Business Against Malware in the Cloud

Introducing Datadog Cloud Security Posture Management

Jul 12, 2021 By Michael Yamnitsky In Datadog

Governance, risk, and compliance (GRC) are major inhibitors for organizations moving to the cloud—and for good reason. Cloud environments are complex, and even a single misconfigured security group can result in a serious data breach. In fact, misconfigurations were the leading cause of cloud security breaches in 2020. This puts a lot of pressure on developer and operations teams to properly secure their services and maintain regulatory compliance.

Read Post

Datadog

Read more about Introducing Datadog Cloud Security Posture Management

Cloud Security Best Practices: Four Tips for Moving Security Technologies to the Cloud

Jul 12, 2021 By Gunter Ollmann In Devo

In my previous post, I discussed cloud-computing security challenges identified in our new report, Beyond Cloud Adoption: How to Embrace the Cloud for Security and Business Benefits. Based on a survey conducted by Enterprise Strategy Group (ESG), the report found that while cloud computing does initially introduce security challenges and increased complexity, it’s worth it in the end. That said, CISOs need to strategically invest time and resources to achieve better security outcomes.

Read Post

Devo

Read more about Cloud Security Best Practices: Four Tips for Moving Security Technologies to the Cloud

Measuring security for cloud native applications

Jul 9, 2021 By Simon Maple, Field CTO In Snyk

Modern cloud-native applications - and the DevSecOps culture and practices used to manage them - introduce a fresh layer of challenges to the already thorny topic of security measurement. Historically, security has been typically measured on a regular but intermittent basis, at particular points in time. However, the pace of change at modern, cloud-native organisations, who've implemented DevSecOps and/or CI/CD, is relentless. Many deployments might be made in a single day, and the security posture of businesses might thus change dramatically over that time.

Read Post

Snyk

Read more about Measuring security for cloud native applications

Cloud Threats Memo: Preventing the Exploitation of Dropbox as a Command and Control

Jul 8, 2021 By Paolo Passeri In Netskope

IndigoZebra is a Chinese state-sponsored actor mentioned for the first time by Kaspersky in its APT Trends report Q2 2017, targeting, at the time of its discovery, former Soviet Republics with multiple malware strains including Meterpreter, Poison Ivy, xDown, and a previously unknown backdoor called “xCaon.” Now, security researchers from Check Point have discovered a new campaign by Indigo Zebra, targeting the Afghan National Security Council via a new version of the xCaon backdoor, dubbed

Read Post