Amazon Web Services (AWS) has resolved a cross-tenant vulnerability in its platform that could be weaponized by an attacker to gain unauthorized...
An unpatched security issue in the Travis CI API has left tens of thousands of developers’ user tokens exposed to potential attacks,...
Threat actors are actively incorporating public cloud services from Amazon and Microsoft into their malicious campaigns to deliver commodity remote access trojans...
Ghana’s National Service Secretariate – NSS – exposed 55GB worth of citizens’ data when an AWS S3 bucket used by the Secretariate...
The clients affected by the incident involving a misconfigured Amazon S3 bucket include Global 500 company Ericsson and Fortune 500 company Cisco. ...
Sennheiser left personal data of over 28,000 customers exposed on a misconfigured Amazon Web Services (AWS) server. According to a report from...
Amazon Web Service (AWS) is suffering a major service outage that is affecting popular platforms in regions where the company provides services....
Brazil-based WiFi management software firm WSpot exposed extensive details of high-profile firms and millions of customers. WSpot provides software to let businesses...
Microsoft has confirmed to mitigate a massive DDoS attack originated from a botnet comprising 70,000 compromised IoT devices. Microsoft reported that an...
The misconfigured S3 bucket was owned by SeniorAdvisor, a consumer ratings and reviews website. WizCase’s cybersecurity researchers discovered a misconfigured Amazon S3...
The misconfigured Amazon S3 bucket belonged to Reindeer, a now-defunct marketing company based in the United States. Threat analysis from the WizCase...
The trove of data was left exposed unencrypted and without any password or security authentication. The team of IT security researchers at...
The company was informed about the exposed data in December 2020 but it only responded and secured the data in March 2021....
A big share of Amazon’s success is contributed by its cloud services, known as Amazon Web Services (AWS). But the e-commerce giant...
Under “usual circumstances,” AWS makes headlines for exposing databases of companies using its services. A few days ago (Oct 22, 2019), the...
tarnish is a static-analysis tool to aid researchers in security reviews of Chrome extensions. It automates much of the regular grunt...
Machine Learning for Threat Intuitive Analysis The goal of the ManaTI project is to develop machine learning techniques to assist an...
A few months back, we saw the personal data of over 188 million people leak due to an insecure MongoDB Database. Then...
Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments. Using the APIs exposed...
BOtB is a container analysis and exploitation tool designed to be used by pentesters and engineers while also being CI/CD friendly...
Mondoo is infrastructure and security analytics your cloud-native applications. By removing the code literacy, we strive to make infrastructure operations and...