Security – Cisco Blog
Harnessing AI to Simplify Cloud Configuration Drift Detection
January 31^st 2025 at 13:00

Harnessing AI to Simplify Cloud Configuration Drift Detection

By: Gogulakrishnan Thiyagarajan

Explore how AI-driven solutions can proactively identify configuration drifts, enhance cloud security, and ensure compliance efficiently.

Security – Cisco Blog
A New Approach to Network Troubleshooting in the Multicloud World
December 4^th 2024 at 13:00

A New Approach to Network Troubleshooting in the Multicloud World

By: Tom Gillis

The Cisco and AWS integration is a radically new approach to ensuring the availability of modern apps today's multicloud, hybrid environments.

The Hacker News
AWS, Google, and Azure CLI Tools Could Leak Credentials in Build Logs
April 16^th 2024 at 13:26

AWS, Google, and Azure CLI Tools Could Leak Credentials in Build Logs

By: Newsroom

New cybersecurity research has found that command-line interface (CLI) tools from Amazon Web Services (AWS) and Google Cloud can expose sensitive credentials in build logs, posing significant risks to organizations. The vulnerability has been codenamed LeakyCLI by cloud security firm Orca. "Some commands on Azure CLI, AWS CLI, and Google Cloud CLI can expose sensitive information in

The Hacker News
AWS Patches Critical 'FlowFixation' Bug in Airflow Service to Prevent Session Hijacking
March 22^nd 2024 at 13:45

AWS Patches Critical 'FlowFixation' Bug in Airflow Service to Prevent Session Hijacking

By: Newsroom

Cybersecurity researchers have shared details of a now-patched security vulnerability in Amazon Web Services (AWS) Managed Workflows for Apache Airflow (MWAA) that could be potentially exploited by a malicious actor to hijack victims' sessions and achieve remote code execution on underlying instances. The vulnerability, now addressed by AWS, has been codenamed FlowFixation by Tenable.

The Hacker News
Alert: Cybercriminals Deploying VCURMS and STRRAT Trojans via AWS and GitHub
March 13^th 2024 at 09:43

Alert: Cybercriminals Deploying VCURMS and STRRAT Trojans via AWS and GitHub

By: Newsroom

A new phishing campaign has been observed delivering remote access trojans (RAT) such as VCURMS and STRRAT by means of a malicious Java-based downloader. “The attackers stored malware on public services like Amazon Web Services (AWS) and GitHub, employing a commercial protector to avoid detection of the malware,” Fortinet FortiGuard Labs researcher Yurren Wan said. An unusual aspect of the

Security – Cisco Blog
Benefits of Ingesting Data from Amazon Inspector into Cisco Vulnerability Management
February 27^th 2024 at 13:00

Benefits of Ingesting Data from Amazon Inspector into Cisco Vulnerability Management

By: Ahmadreza Edalat

Co-authored by Tejas Sheth, Sr. Security Specialist, Amazon Web Services – AISPL.

Risk-based Vulnerability Management (RBVM) represents a strategic approach to cyber security that focuses on… Read more on Cisco Blogs

FreshRSS

Harnessing AI to Simplify Cloud Configuration Drift Detection

A New Approach to Network Troubleshooting in the Multicloud World

AWS, Google, and Azure CLI Tools Could Leak Credentials in Build Logs

AWS Patches Critical 'FlowFixation' Bug in Airflow Service to Prevent Session Hijacking

Alert: Cybercriminals Deploying VCURMS and STRRAT Trojans via AWS and GitHub

Benefits of Ingesting Data from Amazon Inspector into Cisco Vulnerability Management