I’ve seen security paradigms shift dramatically. We started by building a strong perimeter, thinking we could keep threats out. Then came cloud computing, hybrid environments, and a torrent of data that made the old models obsolete. Today, the perimeter is gone, and data is everywhere. This is why a new approach has emerged, one that Read More …
Tag: security
State Secrets for Sale
A recent data leak from the Chinese hack-for-hire industry, analyzed by the SpyCloud Labs team, offers a rare glimpse behind the curtain of this shadowy world, providing crucial lessons for the next generation of IT professionals. The leaks, which appeared on an English-language dark web forum, involved two datasets: one from a major IT security Read More …
Pragmatic Cloud Networking?
Managing service-to-service communication across multiple Amazon Virtual Private Clouds has always presented challenges. The complexities of VPC peering, intricate routing tables, and the manual overhead of maintaining security policies. Amazon VPC Lattice can help address some of these issues by providing a unified, managed networking service that streamlines connectivity, security, and observability for applications built Read More …
CSP – Content Security Policy
In the realm of web security, protecting websites from various types of attacks is crucial. One tool for enhancing web security is the Content Security Policy (CSP). This article will explain what CSP is, how it works, and why it is important for securing web applications. What is CSP? Content Security Policy (CSP) is a Read More …
Invictus :: Profiling TraderTraitor
TraderTraitor, a DPRK-nexus threat actor known for state-sponsored financial gain to fund North Korea’s nuclear weapons programs and engage in espionage. TraderTraitor primarily targets AWS environments, the cryptocurrency industry, and adjacent financial sectors through supply chain compromise, credential theft, and cloud service abuse. They are responsible for major crypto heists, including $625 million from the Read More …
Wiz Research : Current Cloud Exposure Trends
Wiz Research presented key findings from their “Cloud Data Security Snapshot: Current Exposure Trends” report, which analyzed numerous cloud environments for data exposure risks. A major revelation is that sensitive data frequently lies “hiding in plain sight,” with 54% of cloud environments exposing virtual machines and server-less instances containing sensitive information like PII, and 35% Read More …
Notes – Safeguarding Your Salesforce
Source – Weylon Solis One thing that consistently comes up is the need to secure our business applications, and today, we’re going to demystify some concepts around securing a platform many companies rely on: Salesforce. Think of Salesforce as a super-powered digital Rolodex and operations hub for businesses, managing everything from sales leads to customer Read More …
AZ 900 Study Guide
Core Concepts Describe Cloud Concepts – What is the cloud? Describe Azure Architecture & Services – What services are there? Describe Azure Management & Governance – How you can manage things. In simpler terms, cloud computing uses a network to connect users to a cloud platform where they request and access rented computing services. Read More …
Kubernetes Ingress Controller’s fake certificate
A Kubernetes Ingress Controller’s fake certificate is a security issue because it’s a self-signed certificate, which is not trusted by web browsers or other clients. This means that users will encounter certificate warnings or errors when trying to access your application, and the Ingress Controller is not providing secure communication. Here’s why it’s a problem: Not Trusted: Read More …
SID – Security Identifier
A Security Identifier (SID) is a unique, variable-length alphanumeric string assigned by an operating system (OS), like Windows, to every security principal. A security principal can be a user, group, computer, or process that can be authenticated by the OS. SIDs are fundamental to how these systems manage access to resources. Here’s a more detailed Read More …