HackDig : Dig high-quality web security articles

Update now! Microsoft releases patches, including one for actively exploited zero-day

Microsoft has released patches for 74 security problems, including fixes for seven “critical” vulnerabilities, and an actively exploited zero-day vulnerability that affects all supported versions of Windows. First, we’ll look at the actively exploited zero-day. Then we’ll discuss two zero-days that are publicly disclosed, but so far no in the
Publish At:2022-05-11 12:59 | Read:469 | Comments:0 | Tags:Exploits and vulnerabilities adobe Azure chrome Cisco cve-20

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of May 2, 2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of May 2, 2022. I’ve also included some comments on these stories.Microsoft Azure Vulnerability Exposes PostgreSQL Databases to Other C
Publish At:2022-05-09 10:00 | Read:541 | Comments:0 | Tags:Featured Articles VERT News Azure Bug Critical Infrastructur

Azure AutoWarp brings automation headaches

Azure is Microsoft’s cloud computing service providing a wide range of features for businesses worldwide. It’s particularly popular for its virtual machines and IaaS (infrastructure as a service). One useful Azure feature is Automation, which has been around for some years now. Management tasks can be automated across multiple external systems. This is where
Publish At:2022-03-09 08:51 | Read:1462 | Comments:0 | Tags:Exploits automation autowarp Azure cloud microsoft server

Why is MFA important to your cloud account

Recently, we have been facing a recurring problem related to cloud security – breaches based on credentials leak or breakage. Users tend to log into their accounts using a single factor system, such as a user and password combination. This introduces a single point of failure in your account’s security. Weeks ago, we read a tweet about a person
Publish At:2022-03-02 13:36 | Read:1234 | Comments:0 | Tags:AWS Azure Google Cloud Cloud

Will the Cloud Kill Security Agents?

The “agents or no agents” debate is ancient and eternal. Every decade or so, we go through another round of “agents are terrible, let’s end them” and “we need more visibility and control to secure the system, maybe we’ll call it a ‘sensor’ this time.” We ultimately always land on the same conclusion. There are no silver bullets. Today, the debate is alive
Publish At:2022-02-23 13:36 | Read:545 | Comments:0 | Tags:AWS Azure Google Cloud Cloud security

Microsoft mitigated a 3.47 Tbps DDoS attack, the largest one to date

Microsoft announced to have mitigated a record 3.47 Tbps distributed denial of service (DDoS) attack targeting an Azure customer. Microsoft announced that its Azure DDoS protection platform has mitigated a record 3.47 Tbps attack that targeted one of its customers with a packet rate of 340 million packets per second (pps). The news of
Publish At:2022-01-27 13:00 | Read:877 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Azure DDoS information sec

CSPM, CIEM, CWPP, and CNAPP: Guess who in cloud security landscape

Depending on the maturity level of cloud adoption in your organization, you may be trying some services in the cloud, as a PoC, just running a few applications, or totally embracing this new era of cloud. Whether you are in the early stages or running all of your workloads in production, you probably already noticed that cloud-native security is different fr
Publish At:2021-12-08 13:34 | Read:1962 | Comments:0 | Tags:AWS Azure Google Cloud Sysdig Secure Cloud security

Emotet being spread via malicious Windows App Installer packages

As reported by Cryptolaemus on Twitter, and demonstrated step by step by BleepingComputer, Emotet is now being distributed through malicious Windows App Installer packages that pretend to be Adobe PDF software. How does the attack work? To understand what Microsoft is supposed to do about this method, we need to look at how these attacks work. URLs are
Publish At:2021-12-02 16:41 | Read:1850 | Comments:0 | Tags:Ransomware app installer appinstaller Azure bulletproof host

How we broke the cloud with two lines of code: the full story of ChaosDB

Wiz Research Team disclosed technical details about the discovery of the ChaosDB vulnerability in Azure Cosmos DB database solution. In August, 2021 the Wiz Research Team disclosed ChaosDB – a severe vulnerability in the popular Azure Cosmos DB database solution that allowed for complete, unrestricted access to the accounts and databases of several thous
Publish At:2021-11-12 06:22 | Read:2620 | Comments:0 | Tags:Hacking Security Azure ChaosDB data breach hacking news info

Microsoft mitigated a record 2.4 Tbps DDoS attack in August

Microsoft Azure cloud service mitigated a massive DDoS attack of 2.4 terabytes per second (Tbps) at the end of August, it is the largest DDoS attack to date. Microsoft announced that its Azure cloud service mitigated a 2.4 terabytes per second (Tbps) DDoS attack at the end of August, it represents the largest DDoS attack recorded to date. The attack was
Publish At:2021-10-12 07:48 | Read:2734 | Comments:0 | Tags:Breaking News Hacking Azure hacking news information securit

Patch now! PrintNightmare over, MSHTML fixed, a new horror appears … OMIGOD

The September 2021 Patch Tuesday could be remembered as the final patching attempt in the PrintNightmare… nightmare. The ease with which the vulnerabilities shrugged off the August patches doesn’t look to get a rerun. So far we haven’t seen any indications that this patch is so easy to circumvent. The total count of fixes for this Patch Tuesday tall
Publish At:2021-09-15 11:19 | Read:3346 | Comments:0 | Tags:Exploits and vulnerabilities Azure cve-2021-36958 cve-2021-3

What is the MITRE ATT&CK Framework for Cloud? | 10 TTPs You should know of

MITRE ATT&CK framework for cloud will help you identify the possible threats related to a cloud environment and begin securing your cloud infrastructure. MITRE ATT&CK is a well-known comprehensive knowledge base that analyzes all of the tactics, techniques, and procedures (TTPs) that advanced threat actors could possibly use in their attacks
Publish At:2021-07-28 15:58 | Read:2216 | Comments:0 | Tags:AWS Azure Google Cloud IBM Cloud Sysdig Secure Cloud

Microsoft urges Azure users to update PowerShell to fix RCE flaw

Microsoft is urging Azure users to update PowerShell to address a remote code execution vulnerability that was fixed earlier this year. Microsoft is recommending its Azure users to update PowerShell versions 7.0 and 7.1 to protect against a high severity remote code execution vulnerability tracked as CVE-2021-26701. The IT giant is inviting the PowerSh
Publish At:2021-07-02 13:58 | Read:3191 | Comments:0 | Tags:Breaking News Security Azure Cybersecurity cybersecurity new

Detecting new crypto mining attack targeting Kubeflow and TensorFlow

Microsoft has discovered a new large-scale attack targeting Kubeflow instances to deploy malicious TensorFlow pods, using them to mine Monero cryptocurrency in Kubernetes cluster environments. Kubeflow is a popular open-source framework often used for running machine learning tasks in Kubernetes. TensorFlow, on the other hand, is an open-source machin
Publish At:2021-06-30 10:07 | Read:1338 | Comments:0 | Tags:AWS Azure CVE Falco Kubernetes Prometheus Sysdig Monitor Sys

Kubernetes admission controllers in 5 minutes

Admission controllers are a powerful Kubernetes-native feature that helps you define and customize what is allowed to run on your cluster. As watchdogs, they can control what’s going into your cluster. They can manage deployments requesting too many resources, enforce pod security policies, and even block vulnerable images from being deployed.
Publish At:2021-02-18 14:07 | Read:1815 | Comments:0 | Tags:AWS Azure Docker Kubernetes OpenShift Sysdig Secure

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3