Threat Post

Firms Push for CVE-Like Cloud Bug System

Researchers propose fresh approaches to cloud-security bugs and mitigating exposure, impact and risk. Big gaps exist in the 22-year-old Common Vulnerability and Exposures (CVE) system that do not ...
Dark Reading

Google Cloud Bug Allows Server Takeover From CloudSQL Service

Google has fixed a critical flaw in its Google Cloud Platform's database service that researchers used to gain access to sensitive data and secrets, as well as escalate privileges to breach other ...
Law

Bug Bounties and Ransomware Demands: Storm Clouds Ahead for In-House Counsel

Commentary Commentary Bug Bounties and Ransomware Demands: Storm Clouds Ahead for In-House Counsel In the case of data breaches, the obligation to disclose may well be clearly defined by statute. Any ...
Infosecurity-magazine.com

Critical Fluent Bit Bug Impacts All Major Cloud Platforms

Security researchers have warned of another critical software supply chain vulnerability – this time affecting a popular logging utility with 13 billion downloads. Tenable claimed that a memory ...
Computer Weekly

Google Cloud seals bug that could have led to data breaches

Google Cloud has fixed a potentially dangerous application programming interface (API) vulnerability in its platform that, had it been exploited by malicious actors, could have led to widespread data ...
Dark Reading

Azure Data Factory Bugs Expose Cloud Infrastructure

Three flaws discovered in the way Microsoft's Azure-based data integration service leverages an open source workflow orchestration platform could have allowed an attacker to achieve administrative ...