Unit 42 found that 63% of third-party code used in building cloud infrastructure contained insecure configurations.
Source: Read More (Latest topics for ZDNet in Security)
You might be interested in …
[TheRecord] Connecticut becomes fifth state with data privacy law
Connecticut’s recently passed data privacy bill became law on Wednesday, making it the fifth state in the U.S. with some form of data privacy protections for its residents. S.B. No. 6 – The ‘Act Concerning Personal Data Privacy and Online Monitoring’ – became law without the governor’s signature because the state has a rule that […]
[HackerNews] Microsoft Warns of Cross-Account Takeover Bug in Azure Container Instances
Microsoft on Wednesday said it remediated a vulnerability in its Azure Container Instances (ACI) services that could have been exploited by a malicious actor “to access other customers’ information” in what the researcher described as the “first cross-account container takeover in the public cloud.” An attacker exploiting the weakness could execute malicious commands on other […]
[BleepingComputer] Hackers scan for vulnerable devices minutes after bug disclosure
Every hour, a threat actor starts a new scan on the public web for vulnerable systems, moving at a quicker pace than global enterprises when trying to identify serious vulnerabilities on their networks. […] Source: Read More (BleepingComputer)