google cloud
Google Cloud: MFA Will Be Mandatory for All Users in 2025
Google Cloud says it is taking a phased approach to making MFA mandatory for all users by the end of 2025 to help bolster the cyber-protections against increasingly sophisticated cyberattacks ...
Google Cybersecurity Action Team Threat Horizons Report #9 Is Out!
This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our seventh Threat Horizons Report (full version) that we just released (the official blog for ...
New Paper: “Future of the SOC: Evolution or Optimization — Choose Your Path” (Paper 4 of 4.5)
New Paper: “Future of the SOC: Evolution or Optimization — Choose Your Path” (Paper 4 of 4.5)After a long, long, long writing effort break, we are ready with our 4th Deloitte / Google Future of ...
Google Cloud Patched Privilege Escalation Vulnerability
Recently, Google Cloud addressed a medium-severity security vulnerability that could potentially be exploited by attackers with access to a Kubernetes cluster. This flaw, discovered and reported by Palo Alto Networks Unit 42, ...
The State of Cloud Security: New MixMode Report Finds Enterprises Are Struggling to Keep Pace with Security As Cloud Adoption Accelerates
he new State of Cloud Security Report from MixMode summarizes input from 588 security professionals and reveals significant gaps in organizations' abilities to secure cloud platforms and workloads. Despite multi-cloud adoption reaching ...
Cloud Threats Rise: Who’s Attacking and How They Get In
Knowing who the threat actors are, how they are getting into your cloud environment and where your vulnerabilities are is a starting point to improving cloud security ...
Securing Your Cloud Environment: Understanding and Addressing the Challenges in Cloud Security
As enterprises rapidly migrate critical infrastructure and data to the cloud, they lose visibility and control. A recent report shows 80% of organizations encountered a significant security incident related to their cloud ...
Google Cloud Build Flaw Could Enable Supply Chain Attacks
Bad actors could exploit a design flaw, called Bad.Build, in Google Cloud Build to escalate privileges and gain access to Google Artifact Registry code repositories ...
Comparing Cloud Providers’ Shared Responsibility Models
More and more enterprises are becoming multi-cloud. And when evaluating cloud service providers (CSPs) for different needs, one important factor is security. Yet, CSPs aren’t responsible for securing everything—depending on the component ...
Reading Mandiant M-Trends 2023
The famous Mandiant 2023 M-Trends (NOT G-Trends, mind you…) report is out, and here are some of the things that I found to be surprising and NOT surprising :-)Mandiant M-Trends 2023 Detection by SourceSURPRISING“Mandiant ...
