Threat Post

SaaS Attacks: Lessons from Real-Life Misconfiguration Exploits

There is a way to protect users from deceptive OAuth apps, misconfigurations and misappropriated user permissions. SaaS Security Posture Management (SSPM) takes an automated approach to tracking, and ...
Finextra

Limiting the impact of misconfiguration and creating modified database access logs

This is the third and final article of a three-part series which investigates the top five human threats to the data held by banks and financial institutions, and offers a fresh perspective on how the ...
InfoWorld

Cloud misconfiguration: The security threat too often overlooked

I’m seeing a lot of cloud configuration errors in the real world—and it’s scaring the hell out of me A survey of 300 IT professionals by Fugue, a cloud infrastructure security provider, reveals that ...
CSOonline

Group permission misconfiguration exposes Google Kubernetes Engine clusters

It's easy for admins to misunderstand what GKE considers authenticated users and set permissions that could allow anyone with a Google account to access their systems. Researchers warn that many ...
Redmond Magazine

Microsoft Security Misconfiguration Exposed 250 Million Technical Support Accounts

Microsoft on Wednesday disclosed that some of its customer support case information was exposed last month due to misconfigured security settings in an Azure-hosted database. The exposure took place ...