Cloud

Cloud security

Aug 17, 2020 By Clint Harris In AT&T Cybersecurity

There’s no doubt that the adoption of public cloud deployments has accelerated for most organizations recently. In fact, according to metrics released by Oracle recently, nearly half (49%) of all respondents to the Oracle and KPMG Cloud Threat Report expect to store most of their data in a public cloud by the end of 2020. Effectively managing the security and compliance of public cloud deployments can be tricky for many organizations.

Read Post

AT&T Cybersecurity

Read more about Cloud security

Most Popular HIPAA-Compliant Cloud Storage Services

Aug 14, 2020 By Ryan Brooks In Netwrix

Cloud computing provides undeniable benefits for storing and accessing electronic health records. Files stored in the cloud are accessible anytime and anywhere from any device, which makes it easy to share critical medical information between healthcare workers. But is cloud storage secure enough to store, access and transfer sensitive personal and medical information?

Read Post

Netwrix

Read more about Most Popular HIPAA-Compliant Cloud Storage Services

Automated Certificate Provisioning and Management with KeyScaler and Azure IoT Central

Aug 14, 2020 By Device Authority In Device Authority

Automated Certificate Provisioning and Management with Device Authority's KeyScaler and Azure IoT Central

View Video

Device Authority

Read more about Automated Certificate Provisioning and Management with KeyScaler and Azure IoT Central

How to Implement Network Policy in Amazon EKS to Secure Your Cluster

Aug 13, 2020 By Tigera In Tigera

By default, pods are non-isolated; they accept traffic from any source. The Amazon EKS solution to this security concern is Network Policy that lets developers control network access to their services. Amazon EKS comes configured with Network Policy using Project Calico which can be used to secure your clusters. This class will describe a few use cases for network policy and a live demo implementing each use case.

View Video

Tigera

Read more about How to Implement Network Policy in Amazon EKS to Secure Your Cluster

A Big Catch: Cloud Phishing from Google App Engine and Azure App Service

Aug 12, 2020 By Ashwin Vamshi In Netskope

Threat actors are leveraging top tier cloud apps to host phishing baits. Netskope Threat Labs has identified an ongoing O365 phishing campaign hosted in Google App Engine with the credential harvester mostly hosted in Azure App Service. This phishing campaign typically targets O365 users via phishing emails with a direct link or attachment.

Read Post

Netskope

Read more about A Big Catch: Cloud Phishing from Google App Engine and Azure App Service

Survey: 76% of IT Pros Say It's Difficult to Maintain Security Configs in the Cloud

Aug 12, 2020 By Ray Lapena In Tripwire

Cloud misconfigurations are no laughing matter. In its “2020 Cloud Misconfigurations Report,” DivvyCloud revealed that 196 separate data breaches involving cloud misconfigurations had cost companies a combined total of approximately $5 trillion between January 1, 2018 and December 31, 2019. The problem is that those costs could be even higher; as reported by ZDNet, 99% of IaaS issues go unreported.

Read Post

Tripwire

Read more about Survey: 76% of IT Pros Say It's Difficult to Maintain Security Configs in the Cloud

Google App Engine, Azure App Service Abused in Phishing Campaign

Aug 12, 2020 By David Bisson In Tripwire

A phishing campaign abused both the Google App Engine and the Azure App Service to steal victims’ Microsoft Outlook credentials. Netskope observed that the attack campaign started with a shortened link distributed by a phishing email. This link redirected a recipient of the email to a Google App Engine domain.

Read Post

Tripwire

Read more about Google App Engine, Azure App Service Abused in Phishing Campaign

Using Splunk to Detect Abuse of AWS Permanent and Temporary Credentials

Aug 12, 2020 By Rod Soto In Splunk

Amazon Web Services provides its users with the ability to create temporary credentials via the use of AWS Security Token Service (AWS STS). These temporary credentials work pretty much in the same manner like permanent credentials created from AWS IAM Service. There are however two differences.

Read Post

Splunk

Read more about Using Splunk to Detect Abuse of AWS Permanent and Temporary Credentials

How To Use Teleport: Using GitHub for Single Sign On (SSO)

Aug 6, 2020 By Teleport In Teleport

This video walks though how to set up Teleport to use GitHub for Single Sign On.

View Video

Teleport

Read more about How To Use Teleport: Using GitHub for Single Sign On (SSO)

Netskope Joins with Crowdstrike, Okta, and Proofpoint to Secure Remote Work Any Time, Anywhere, at Scale

Aug 6, 2020 By Greg Mayfield In Netskope

Netskope, CrowdStrike, Okta, and Proofpoint are joining together to help better safeguard organizations by delivering an integrated, Zero Trust security strategy that is designed to protect today’s dynamic and remote working environments at scale.

Read Post