Crying Out Cloud

Loading from the Cloud... Season 2 of "CRYING OUT CLOUD" is here! Join our hosts, Eden and Amitai, as they dive into the latest cloud stories that we can't wait to share with you Here's a sneak peek into the season's opening: 🚗 Mercedes-Benz Source Code Exposure: A public GitHub Repo was exposed - allowing unauthorized access to the company's internal servers, including AWS and Azure subscriptions. The credentials remained publicly accessible for 3-4 months. 😱 🌨️ Midnight Blizzard Hits Microsoft: Russian actors (Midnight Blizzard) got into Microsoft's network and stole employee emails, finding a misconfigured account with a weak password. Among other things, they tried to find out what Microsoft knew about their activity. 🔐 Ivanti Vulnerabilities: Ivanti's VPN products exposed vulnerabilities, allowing remote code execution and authentication bypass, exploited by a Chinese Threat Actor.

🛡️ Join Eden Naftali & Amitai Cohen's exclusive interview with Yinon Costica, as he brings unparalleled expertise to the table. From his beginnings in Israel's 8200 intelligence unit, through Adallom, which was acquired by Microsoft, to co-founding Wiz

🎙️ NEW SPECIAL PODCAST EPISODE WITH @CHRIS HUGHES! 🎙️ Here's a sneak peek into our chat: 🛡️ Join Chris, Amitai, and Eden as they unveil intriguing security nuances between public and private sectors. Gain exclusive insights into FedRAMP, straight from Chris's expertise, and his take on the implications of President Biden's AI order for the cybersecurity landscape. 🌐 How exactly does SBOM adoption act as a shield against supply chain breaches? What other strategies can fortify against such attacks? 🔍 Delve into the post-COVID startup world. Chris touches on the intricacies of the challenges faced, offering a glimpse into how these innovative ventures navigate a changed landscape. Tune in for a captivating talk below!

🎙️ NEW PODCAST EPISODE ALERT! Eden and Amitai are back with another wild ride through the cloudy skies on "Crying Out Cloud"! Here's the scoop for today's adventure: 01:36 - Okta Support System Compromise: 🕵️‍♂️ We unravel the mystery surrounding an unknown threat actor's access to Okta's customer support system. What's an HAR file, and why should you care? 06:30 - Azure CLI Credential Leak (CVE-2023-36052): 💻 Get the lowdown on Microsoft's Azure CLI vulnerability and how this leak happened, why defaults matter, and what the patch means for your Azure CLI setup. 13:17 - Reptar and Cachewarp CPU Vulnerabilities: 💡 CPU vulnerabilities are a trend we can't ignore! Discover why Reptar and Cachewarp CPU vulnerabilities might sound daunting but aren't necessarily the cloud apocalypse. Plus, the juicy details on who's patched and who's snoozing on this issue Links: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36052https://cloud.google.com/blog/products/identity-security/google-researchers-discover-reptar-a-new-cpu-vulnerabilityhttps://lock.cmpxchg8b.com/reptar.htmlhttps://cachewarpattack.com/https://sec.okta.com/harfiles

In our new Crying Out Cloud podcast episode, we're joined by the LEGENDARY Valentina Palmiotti, the one and only Chompie 🚀 ✨ In this episode, you'll find: 1. The surprising story behind her hacker alias - "Chompie," 🕵️‍♀️ 2. Valentina's insights from her Blackhat presentation, where she challenges security boundaries with kernel post-exploitation techniques 🤯 3. A peek into her day-to-day at IBM X-Force, from research to code auditing and vulnerability analysis 💼 And more!

More info here: https://www.wiz.io/blog/38-terabytes-of-private-data-accidentally-exposed-by-microsoft-ai-researchers

fwd:cloudsec event highlights podcast special - Featuring our special wizard guest Scott Piper, who is also the co-founder of fwd:cloudsec! A non-profit conference on cloud security that discusses all the major cloud platforms, both attack and defense research, limitations of security features, the pros and cons of different security strategies, and more! fwd:cloudsec 2023 videos: https://www.youtube.com/playlist?list=PLCPCP1pNWD7MR1SwekwbZls9TGzqo_LHx

👀 Here's a sneak peek at today’s episode:  🔒 Stay ahead of the game! LAPSUS$ Hackers may be making waves. Two members of this notorious group faced consequences in the UK, but shockingly, they continued their hacking activities even while under house arrest.   🤖 Data Poisoning in AI Training is a growing concern. Hackers can manipulate the data used to train AI models, introducing risks and vulnerabilities. Validating data integrity and randomizing data ingestion times are useful mitigations against this threat. 💻 The WinRAR Vulnerability (CVE-2023-38831)! This flaw was exploited against crypto-traders to infect their devices with malware, but should be considered a low concern for cloud customers unless using virtual desktops.   Important links: https://gizmodo.com/hackers-lapsus-uber-nvidia-rockstar-games-microsoft-1850766324  https://www.bbc.com/news/technology-66549159  https://www.cisa.gov/resources-tools/resources/review-attacks-associated-lapsus-and-related-threat-groups-executive-summary  https://www.cisa.gov/sites/default/files/2023-08/CSRB_Lapsus%24_508c.pdf  https://duo.com/decipher/lapsususd-analysis-finds-need-for-better-iam-mfa-deployments  https://www.youtube.com/watch?v=h9jf1ikcGyk  https://arxiv.org/pdf/2302.10149.pdf  https://www.blackhat.com/us-23/briefings/schedule/#poisoning-web-scale-training-datasets-is-practical-32112  https://arstechnica.com/security/2023/08/winrar-0-day-that-uses-poisoned-jpg-and-txt-files-under-exploit-since-april/ 

🍿🤏 Everything you need to know about this month's cloud security drama in the latest "Crying Out Cloud" episode! In this edition, we explore THREE captivating stories 📚🔍 1️⃣ "GameOverlay" unveiled: Ubuntu's privilege escalation vulnerabilities 😱 — Wiz Research uncovered a pair of vulnerabilities that's affecting 40% of Ubuntu cloud machines! We've got the scoop on what you must know. 2️⃣ Unmasking "P2PInfect": The botnet targeting Redis! 🤖 — Ever wondered how a botnet hijacks your exposed Redis instances? Let's get into the nitty-gritty of this attack and find out how to defend your environment. 3️⃣ Jumpcloud's dance with North Korea: A supply chain saga 🕊️ -—Join us as we uncover the tale of Jumpcloud's breach and its uncanny link to North Korea. Dive deep into the investigation with us. Important links: 1. https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability 2. https://ubuntu.com/security/CVE-2023-2640 3. https://ubuntu.com/security/CVE-2023-32629 4. https://www.cadosecurity.com/redis-p2pinfect/ 5. https://unit42.paloaltonetworks.com/peer-to-peer-worm-p2pinfect/ 6. https://www.mandiant.com/resources/blog/north-korea-supply-chain 7. https://www.sentinelone.com/labs/jumpcloud-intrusion-attacker-infrastructure-links-compromise-to-north-korean-apt-activity/ 8. https://jumpcloud.com/blog/security-update-incident-details 9. https://jumpcloud.com/support/july-2023-iocs 10. https://github.blog/2023-07-18-security-alert-social-engineering-campaign-targets-technology-industry-employees/ 11. https://blog.phylum.io/sophisticated-ongoing-attack-discovered-on-npm/

🔥 SPECIAL EPISODE ALERT 🔥 @Corey Quinn Joins the Party — in this week's incredible episode of "Crying Out Cloud" 🥳 Meet our remarkable hosts: ✨ @Eden, the tech-savvy wizard from the CTO Team at Wiz ✨ @Amitai, our expert from the Threat Research Team at Wiz And for this special occasion, we're rolling out the red carpet for: 🎊 COREY QUINN! 🎊 Chief Cloud Economist at The Duckbill Group, the mastermind behind Last Week in AWS, and the charismatic host of the Screaming in the Cloud podcast. Corey is not just a cloud icon – he's a cloud ROCKSTAR 🎸 On the producer's desk: 🕹️ @Alon Schindel, our powerhouse Director of Data and Threat Research at Wiz — In this unforgettable episode, we explore: 💥 The Microsoft MSA incident – a turning point or a fading memory? 💡 The cloud's revolutionary journey over the past decade 🌍 Cloud usage in today's economic climate 💎 Often overlooked but golden cloud services 🛡 Why cloud misconfigurations are still a major issue AND... We put Corey in the hot seat with a speed round that's packed with laughs and surprises!