Organizations today widely use cloud services to scale operations, improve flexibility and focus more on their daily mission, rather than managing complex IT infrastructure. But dark clouds have ...

A recent discovery of a remote code execution (RCE) vulnerability in Google Cloud Platform (GCP) has raised new concerns about cloud security. Known as “CloudImposer,” the vulnerability was revealed ...

Companies continue to create new software and apps or migrate existing ones to cloud-based services. However, a company that adopts cloud computing services without understanding the risks involved ...

Tenable's 2025 Cloud AI Risk Report reveals significant vulnerabilities in cloud-based AI, highlighting risks in major providers' services. Tenable® has released its Cloud AI Risk Report 2025, which ...

The storage vendor isn’t aware of any customer attacks resulting from the vulnerability and said it could only have potentially affected a small portion of the customer base. SoftNAS isn’t aware of ...

The vendor disclosed that some customers have been attacked through exploitation of the newly discovered flaws in its Cloud Service Appliance. Ivanti disclosed Tuesday that some customers have been ...

CVE-2026-21877, a critical authenticated RCE flaw with CVSS 10.0, fixed in version 1.121.3 after affecting earlier releases.

A crisis is unfolding across enterprise cloud environments—one that’s easily overlooked but becoming impossible to ignore. As organizations rush to embrace AI and next-generation digital ...

A series of ‘critical’ zero-day vulnerabilities can enable ‘full takeover’ of a Kubernetes cluster — and are ‘probably the most severe’ security issue to affect Kubernetes environments in recent years ...

Four out of five (80.3%) security vulnerabilities observed in organizations across all sectors come from a cloud environment, Palo Alto Networks’ Unit 42 found in its latest Attack Surface Threat ...

As organizations are increasingly moving to the cloud, the volume of threats and attacks are growing right along with it. CrowdStrike today released its 2023 Global Threat Report revealing the current ...

As cloud-native environments gain popularity, development, security, and operations (DevSecOps) workflows have needed increased vulnerability management measures. However, many businesses are still ...