The Benefits of eBPF for API Security
By Sanjay Nagaraj, Co-Founder & CTO of Traceable AI You might hear the term “eBPF” mentioned when chatting to DevOps…
GoAnywhere MFT zero-day vulnerability lets hackers breach servers
The developers of the GoAnywhere MFT file transfer solution are warning customers of zero-day remote code execution vulnerability on exposed…
How the Cloud Is Shifting CISO Priorities
The greatly expanding attack surface created by the cloud needs to be protected.
Former Ubiquiti dev pleads guilty to trying to extort his employer
Nickolas Sharp, a former Ubiquiti employee who managed the networking device maker's cloud team, pled guilty today to stealing gigabytes worth…
KORE Delivers IoT SAFE Solution for Massive IoT Use Cases with AWS
Delivering secure, global IoT device connectivity, deployment, and management at scale.
EmojiDeploy Attack Chain Targets Misconfigured Azure Service
Multiple misconfigurations in a service that underpins many Azure features could have allowed an attacker to remotely compromise a cloud…
Secrets Rotation Recommended After CircleCI Security Incident
Companies are being urged to update 0Auth, runner, and project API tokens, along with other secrets stashed with CircleCI.
Hackers can use GitHub Codespaces to host and deliver malware
GitHub Codespaces, a cloud-hosted integrated development environment (IDE), has a port forwarding feature that malicious actors can abuse to host…
The Dangers of Default Cloud Configurations
Default settings can leave blind spots but avoiding this issue can be done.
CircleCI’s hack caused by malware stealing engineer’s 2FA-backed session
Hackers breached CircleCi in December after an engineer became infected with information-stealing malware that stole the employee's 2FA-backed SSO session, allowing…