Tag: cloud
-
Hackers Spied on a Stock Exchange Executive’s Outlook Mailbox for Five Months
Unknown attackers spent at least five months inside the Outlook mailbox of a senior executive at a major global stock exchange, copying the inbox out in small, repeated batches and routing it through Dropbox and OneDrive so the traffic blended into normal cloud activity.Symantec and Carbon Black’s Threat Hunter Team reported the campaign this week.…
-
Proofpoint: TA4922 Deploys New RAT and Loader Arsenal
A rapidly evolving threat cluster tracked as TA4922, a Chinese-speaking cybercriminal actor deploying a diverse and expanding malware arsenal that now includes Atlas RAT, RomulusLoader, SilentRunLoader, and ValleyRAT. The group is notable for its high operational tempo, shifting tactics, and ability to blend custom malware with legitimate tools and cloud services, complicating detection efforts across…
-
Identity Security als digitale Hygiene: Der unterschätzte Cybersecurity-Hebel
Was fehlt, ist der Brandschutzbeauftragte. Nur wer dieses Fundament sichtbar macht, kann es pflegen, ausbauen und gegen neue Bedrohungen absichern. In einer Zeit von Ransomware, KI-Agenten, Cloud-Abhängigkeiten First seen on infopoint-security.de Jump to article: www.infopoint-security.de/identity-security-als-digitale-hygiene-der-unterschaetzte-cybersecurity-hebel/a45378/
-
Attackers already know the secrets are on your developers’ machines. Do you?
Tags: cloudIn a recent GitGuardian analysis, an average of 150 secrets were found on a sample of developer endpoints. Private keys accounted for 38% of unique secrets, while cloud, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/04/attackers-secrets-developers-machines/
-
Manipulierte Git-Tags verteilen Credential-Stealer in PHP-Paketen – Laravel-Lang-Stealer stiehlt Cloud-, Browser- und Vault-Daten
First seen on security-insider.de Jump to article: www.security-insider.de/laravel-lang-supply-chain-credential-stealer-git-tags-cloud-browser-a-d8a36765defe9b2a7f93b4f69281614e/
-
ETSI sets security requirements for AI data centers and cloud platforms
ETSI has published TS 104 033, a technical specification that defines security requirements for AI computing platforms. The specification establishes a security framework for … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/04/etsi-securing-ai-computing-platforms-standard/
-
VMware Cloud Foundation 9.1 gives partners a bigger private cloud services play
First seen on scworld.com Jump to article: www.scworld.com/news/vmware-cloud-foundation-9-1-gives-partners-a-bigger-private-cloud-services-play
-
Cloud Security Alliance Report Highlights Growing Patch Gap Risks
AI is accelerating exploitation timelines while known vulnerabilities remain a leading cause of security incidents, according to a CSA report. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/cloud-security-alliance-report-highlights-growing-patch-gap-risks/
-
Only 11% of production agents pass the AI agent security bar
Enterprise teams are running AI agents that write code, drive browsers, answer customer calls, manage cloud infrastructure, and query data warehouses with standing … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/03/research-ai-agent-security-capability/
-
Cisco Live 2026: New Security Tools Target AI Threats
Cisco unveiled Cloud Control, Live Protect, and Hybrid Mesh Firewall at Cisco Live to help enterprises manage AI-era IT and security operations. The post Cisco Live 2026: New Security Tools Target AI Threats appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-cisco-cloud-control-agentic-ai-security/
-
Ivanti ITSM Flaw Could Allow Attackers to Escalate to Admin Access
Ivanti has patched a high-severity vulnerability in its Ivanti Neurons for ITSM platform that could allow authenticated attackers to escalate privileges and gain full administrative access to affected systems. Tracked as CVE-2026-9614, the flaw is classified as an improper access control issue (CWE-284) and carries a CVSS score of 8.8. The vulnerability affects both cloud…
-
HazyBeacon Campaign Abuses AWS for Stealthy C2 Communications
Tags: attack, cloud, communications, control, cyber, espionage, government, network, service, threatA newly documented cyber espionage operation known as HazyBeacon, tracked as CL-STA-1020, is leveraging Amazon Web Services (AWS) to build stealthy command-and-control (C2) channels that are difficult for defenders to detect. The campaign primarily targets government networks in Southeast Asia and represents a growing shift toward cloud-native attack infrastructure. This misconfiguration enables threat actors to…
-
Red Hat Confirms Supply Chain Breach Impacting @redhatservices npm Packages
Red Hat has confirmed a supply chain security breach impacting multiple npm packages under the @redhat-cloud-services namespace, as detailed in security bulletin RHSB-2026-006 released on June 2, 2026. The incident was publicly disclosed a day earlier and stems from a compromised GitHub account that introduced malicious code into trusted repositories maintained within Red Hat’s infrastructure.…
-
Von Infostealer-Infektion bis Cloud-Übernahme in wenigen Schritten – Megalodon kompromittiert 5.561 GitHub-Repositories in sechs Stunden
First seen on security-insider.de Jump to article: www.security-insider.de/megalodon-malware-5561-github-repositories-aws-google-cloud-azure-a-d947799b5657a19025ee9afb057d8c33/
-
What Is Cloud Security Management? Types Strategies in 2026
Read our guide on cloud security management and the best solutions in 2026. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/cloud/cloud-security-management/
-
Top 7 Cloud Security Posture Management (CSPM) Tools in 2026
Learn about the top Cloud Security Posture Management (CSPM) solutions in 2026 that help organizations identify and rectify gaps in their cloud security. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/products/cspm-tools/
-
Data dive: Mapping the UK public sector’s hyperscale dependence
UK government and local authorities have built critical infrastructure amid a web of US hyperscaler cloud and other providers, which brings risks of exposure to a narrow set of non-UK suppliers First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366643799/Data-dive-Mapping-the-UK-public-sectors-hyperscale-dependence
-
Red Hat npm packages compromised in new Mini Shai-Hulud malware wave
Unknown attackers have compromised 30+ Red Hat Cloud Services npm packages with malware that goes after credentials stored in developers’ build environment. What the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/02/red-hat-npm-packages-compromised-mini-shai-hulud/
-
Attackers Hijack Red Hat npm Scope to Steal Cloud Secrets
Tags: cloudAttackers backdoored 32 packages in Red Hat’s official npm scope to steal cloud and CI secrets First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/red-hat-npm-scope-backdoored/
-
34 Malicious Packages Steal Cloud Keys, Wallets, and SSH Credentials
Tags: ai, attack, cloud, credentials, crypto, cyber, data, hacker, malicious, open-source, pypi, supply-chainHackers are actively abusing open-source ecosystems to steal sensitive developer data through a large-scale supply chain attack dubbed “TrapDoor,”. The campaign spans npm, PyPI, and Crates.io, leveraging 34 malicious packages and 384 versions to target developers working in cryptocurrency, DeFi, AI, and cloud environments. The attackers weaponized legitimate package installation and build mechanisms to silently…
-
Red Hat Cloud Services npm Packages Hijacked in Credential-Theft Malware Campaign
A large-scale software supply chain attack has compromised multiple official npm packages under the @redhat-cloud-services scope, exposing thousands of developers and CI/CD environments to credential theft. Security researchers at Aikido confirmed that 96 malicious versions across 32 packages were published on June 1, 2026, with combined weekly downloads exceeding 116,000. Red Hat Cloud Services npm…
-
Red Hat Cloud Services npm Packages Hijacked in Credential-Theft Malware Campaign
A large-scale software supply chain attack has compromised multiple official npm packages under the @redhat-cloud-services scope, exposing thousands of developers and CI/CD environments to credential theft. Security researchers at Aikido confirmed that 96 malicious versions across 32 packages were published on June 1, 2026, with combined weekly downloads exceeding 116,000. Red Hat Cloud Services npm…
-
Red Hat npm packages compromised to steal developer credentials
More than 30 npm packages under Red Hat’s ‘@redhat-cloud-services’ namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, dubbed “Miasma.” First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/red-hat-npm-packages-compromised-to-steal-developer-credentials/
-
Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm
A new Mini Shai-Hulud supply chain attack campaign, codenamed Miasma, has compromised @redhat-cloud-services packages to steal credentials and secrets from developer machines and deliver a self-propagating worm.”This is effectively a Mini Shai-Hulud campaign: it uses the same core tactics of install-time execution, credential harvesting, CI/CD targeting, encrypted exfiltration, and potential First seen on thehackernews.com Jump…
-
Microsoft investigates Office Apps, Teams file access issues
Microsoft says an ongoing incident is preventing users of its Teams collaboration platform and Office for the web cloud-based productivity suite from opening files. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-investigates-office-apps-teams-file-access-issues/
-
Attackers Exploit Docker, Kubernetes Misconfigs to Breach Hosts
Attackers are increasingly targeting Docker and Kubernetes environments by exploiting misconfigurations, weak isolation boundaries, and insecure APIs to compromise host systems and entire clusters. As containerization becomes the backbone of modern cloud infrastructure, threat actors are shifting focus from traditional endpoints to container ecosystems, where a single weakness can expose critical services at scale. A…
-
China-nahe APT-Gruppe Webworm nimmt europäische Behörden ins Visier – EchoCreep und GraphWorm verstecken Angriffsbefehle in Cloud-Diensten
First seen on security-insider.de Jump to article: www.security-insider.de/webworm-echocreep-graphworm-backdoor-discord-graph-api-europa-a-8bd6e43eba9a87a50c79849b64e1b607/
-
Schweizer Telekom-Riese legt Kubernetes-Architektur offen – Swisscom veröffentlicht komplette souveräne Cloud-Infrastruktur
First seen on security-insider.de Jump to article: www.security-insider.de/swisscom-kubernetes-architektur-souveraene-private-cloud-a-b1d80e4d46847571294872bf9b2ea1e9/
-
TeamPCP Compromised LiteLLM in AI Supply Chain Attack
TeamPCP used malicious LiteLLM packages to steal AI and cloud credentials in a software supply chain attack. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/teampcp-compromised-litellm-in-ai-supply-chain-attack/