cloud-security 23
- AWS Launches Kiro CLI to Accelerate Security Investigations
- Vertex AI Python SDK Flaw Allows Cross-Tenant RCE via Bucket Squatting
- Trinity of Chaos: Anatomy of the ShinyHunters Data-Extortion Machine
- Google Launches AI Threat Defense with Automated Security Operations Agents
- PCPJack Hijacks 230 AWS, Azure, and GCP Servers to Build Covert SMTP Relay Network
- Microsoft Exchange Online Outage Disrupts Email Across North America and Germany
- CISA and Eight Agencies Warn of Active Attacks Targeting Automatic Tank Gauge Systems
- GCHQ Director Warns Russia Is Conducting Daily Hybrid Attacks on UK From Seabed to Cyberspace
- Cisco Patches CVSS 10.0 Flaw in Secure Workload REST API
- AWS IAM Identity Center Gains Multi-Region Replication and Custom Domain Support
- AWS GuardDuty Guidance for Detecting and Preventing Cryptocurrency Mining
- China-Backed Hackers Are Industrializing Botnet Operations for Low-Attribution Attacks
- Unit 42 Zealot PoC Demonstrates AI Agents Autonomously Attacking Cloud Environments
- Vercel Breach Traced to Context.ai Third-Party Compromise
- ShinyHunters Claims 45 Million McGraw Hill Records via Salesforce Misconfiguration
- APT41 Deploys Zero-Detection Backdoor to Harvest Cloud Credentials via Typosquatting C2
- Google Extends Gmail End-to-End Encryption to Android and iOS for Enterprise Users
- Russia's APT28 Conducts Malwareless Espionage via SOHO Router DNS Hijack
- AWS Bedrock AgentCore Flaw Enables "Agent God Mode" via IAM Privilege Escalation
- Chaos Botnet Variant Expands to Misconfigured Cloud Deployments, Adds SOCKS Proxy
- Claude Code Source Snippets Leaked Via Misconfigured Bucket
- AWS Launches S3 Files for Shared Bucket Mounts
- Axios Infrastructure Targeted in Coordinated DDoS