Organizations today widely use cloud services to scale operations, improve flexibility and focus more on their daily mission, rather than managing complex IT infrastructure. But dark clouds have ...

Organizations traditionally have struggled to track vulnerabilities in public cloud platforms and services because of the lack of a common vulnerability enumeration (CVE) program like the one that ...

A recent discovery of a remote code execution (RCE) vulnerability in Google Cloud Platform (GCP) has raised new concerns about cloud security. Known as “CloudImposer,” the vulnerability was revealed ...

“We offer all our security features baked into the cloud, so we don’t make the customers choose between cost and security,” Oracle VP of Software Bala Chandran said. The new capabilities are built on ...

Companies continue to create new software and apps or migrate existing ones to cloud-based services. However, a company that adopts cloud computing services without understanding the risks involved ...

The storage vendor isn’t aware of any customer attacks resulting from the vulnerability and said it could only have potentially affected a small portion of the customer base. SoftNAS isn’t aware of ...

Tenable's 2025 Cloud AI Risk Report reveals significant vulnerabilities in cloud-based AI, highlighting risks in major providers' services. Tenable® has released its Cloud AI Risk Report 2025, which ...

The vendor disclosed that some customers have been attacked through exploitation of the newly discovered flaws in its Cloud Service Appliance. Ivanti disclosed Tuesday that some customers have been ...

Researchers propose fresh approaches to cloud-security bugs and mitigating exposure, impact and risk. Big gaps exist in the 22-year-old Common Vulnerability and Exposures (CVE) system that do not ...

Four out of five (80.3%) security vulnerabilities observed in organizations across all sectors come from a cloud environment, Palo Alto Networks’ Unit 42 found in its latest Attack Surface Threat ...

CVE-2026-21877, a critical authenticated RCE flaw with CVSS 10.0, fixed in version 1.121.3 after affecting earlier releases.

As cloud-native environments gain popularity, development, security, and operations (DevSecOps) workflows have needed increased vulnerability management measures. However, many businesses are still ...