Cloud-native services are highly vulnerable to cyber threats due to their operation in public clouds and multiple users sharing the same resources. In such scenarios, a hacker can orchestrate a deeper attack by exploiting a vulnerable resource they manage to control. Perimeter security alone isn’t enough, but it still functions as the first line of… Read more »
It’s easy to imagine a hacker breaching an environment using a zero-day exploit but often breaches are from far more mundane reasons. The World Economic Forum’s Global Risks Report found that 95% of cybersecurity issues are a result of human error. Let’s look at three common Cloud Configuration Management mistakes and how to avoid them.… Read more »
A well-developed naming convention saves time, reduces mistakes, and increases security. The veracity of that statement may seem questionable at first glance. Does it matter what an AWS security group is named? The name has no impact on functionality, so it may seem like a waste of time to create governance around it. However, as… Read more »
How private a VPC is, depends on the choices made when setting it up. The default options that provide quick and easy access can also be inherently insecure. Amazon’s Virtual Private Cloud (VPC) is a virtual networking concept that allows AWS resources to communicate with each other over a private virtual network.