Bra podcast
Sveriges mest populära poddar
- Affärsnyheter
- Alternativ hälsa
- Amerikansk fotboll
- Andlighet
- Animering och manga
- Astronomi
- Barn och familj
- Baseball
- Basket
- Berättelser för barn
- Böcker
- Brottning
- Buddhism
- Dagliga nyheter
- Dans och teater
- Design
- Djur
- Dokumentär
- Drama
- Efterprogram
- Entreprenörskap
- Fantasysporter
- Filmhistoria
- Filmintervjuer
- Filmrecensioner
- Filosofi
- Flyg
- Föräldraskap
- Fordon
- Fotboll
- Fritid
- Fysik
- Geovetenskap
- Golf
- Hälsa och motion
- Hantverk
- Hinduism
- Historia
- Hobbies
- Hockey
- Hus och trädgård
- Ideell
- Improvisering
- Investering
- Islam
- Judendom
- Karriär
- Kemi
- Komedi
- Komedifiktion
- Komediintervjuer
- Konst
- Kristendom
- Kurser
- Ledarskap
- Life Science
- Löpning
- Marknadsföring
- Mat
- Matematik
- Medicin
- Mental hälsa
- Mode och skönhet
- Motion
- Musik
- Musikhistoria
- Musikintervjuer
- Musikkommentarer
- Näringslära
- Näringsliv
- Natur
- Naturvetenskap
- Nyheter
- Nyhetskommentarer
- Personliga dagböcker
- Platser och resor
- Poddar
- Politik
- Relationer
- Religion
- Religion och spiritualitet
- Rugby
- Så gör man
- Sällskapsspel
- Samhälle och kultur
- Samhällsvetenskap
- Science fiction
- Sexualitet
- Simning
- Självhjälp
- Skönlitteratur
- Spel
- Sport
- Sportnyheter
- Språkkurs
- Stat och kommun
- Ståupp
- Tekniknyheter
- Teknologi
- Tennis
- TV och film
- TV-recensioner
- Underhållningsnyheter
- Utbildning
- Utbildning för barn
- Verkliga brott
- Vetenskap
- Vildmarken
- Visuell konst
Om podden
Welcome to ”Crying Out Cloud,” the monthly podcast that keeps you up to date with the latest cloud security news. Hosted by experts Eden Naftali and Amitai Cohen, each episode provides in-depth coverage of the most important vulnerabilities and incidents from the previous month. Tune in for insightful analysis and expert recommendations to help you safeguard your cloud infrastructure.
The podcast Crying Out Cloud is created by Wiz. The podcast and the artwork on this page are embedded on this page using the public podcast feed (RSS).
Avsnitt
Quadruple Supply Chain Attack, IngressNightmare Exploited, and Rumors Abound
9 april 2025 |
29 min
🎙️ All you need to know on the latest discoveries and updates ft. Rami McCarthy 🚨In this episode of Crying Out Cloud, @Amitai Cohen & @Eden Koby Naftali are joined by Rami — a Principal Security Researcher here at Wiz.Rami adds some energy and expertise to the table as we dive into a variety of topics:• GitHub Action supply chain attack • IngressNightmare updates. A follow-up to our last episode on this critical vulnerability.• Alleged Oracle breaches: Breaking down the latest rumors and insights.
Ingress Nightmare: How a Single Request Could Take Over Your K8s Cluster
25 mars 2025 |
22 min
🎙️ All you need to know on our latest discovery #IngressNightmare 🚨In this episode of Crying Out Cloud, Amitai Cohen & Eden Koby Naftali are joined by Nir Ohfeld — Head of Vulnerability Research at Wiz. Nir and his team have uncovered some of the most impactful vulnerabilities affecting cloud and SaaS applications. In this episode, he's diving into the latest discovery, a critical vulnerability in Ingress-NGINX:• How the team uncovered a critical unauthenticated RCE in NGINX Ingress Controller• Why Kubernetes admission controllers might be the next big attack surface• The wild journey of hunting vulnerabilities in the cloud
From Hotmail Hacks to AI hype, CTFs & Cloud Guardian: with Ashish Rajan
5 mars 2025 |
22 min
🎙 Ready for the latest on AI, cloud security, and Fortune 500 challenges?This week on our podcast Crying Out Cloud, we're joined by none other than Ashish Rajan— a seasoned cybersecurity leader and host of the AI Cybersecurity Podcast & Cloud Security Podcast.Amitai Cohen & Eden Koby Naftali dive into:- The evolution of AI & cloud security- Lessons from securing Fortune 500 & FTSE 100 companies- The biggest challenges (and laughs) in the industry
HACKERS ARE HIJACKING CLOUD KEYS: The Rise of Cloud-Native Ransomware
21 februari 2025 |
23 min
From Supply Chain Attacks to S3 Ransomware: Critical Cloud Security Stories You Need to Know.
🎙️ In this episode of Crying Out Cloud, Eden and Amitai break down the latest cloud security chaos, from sneaky supply chain attacks to AI-powered malware:1) How attackers exploited a GitHub misconfiguration to enable a supply chain attack.2) The latest twist on cloud-native extortion (spoiler: it all comes back to stolen cloud keys).3) NullifAI – Malicious AI models hiding in plain sight.4) whoAMI attack – The clever AWS AMI name confusion flaw that might catch you off guard.
Norwegian Cloud Security, Open Source Tools, and Financial Sector Risks with Karim El-Melhaoui
10 februari 2025 |
22 min
🎙️ SEASON PREMIERE ALERT: Tune in to our latest episode featuring Karim El-Melhaoui, where we dive into the latest cloud security challenges ☁️🔥 Amitai Cohen & Eden Koby Naftali are kicking off the season with:- Cyber risk vs. operational risk – Why cyber risk is harder to quantify and how Norges Bank used NIST's Cybersecurity Framework to strengthen resilience.- Open-source tools fuel innovation, but many are abandoned without long-term support.- How cloud security alliance Norway is setting stronger security standards.🎧 Ready for season 3 of #CryingOutCloud?
DeepSeek Data Leak with Gal Nagli (Wiz Research)
30 januari 2025 |
11 min
Why is everyone suddenly talking about DeepSeek? 👀 🎙️ If you've been seeing DeepSeek everywhere but are wondering what the actual buzz is about - this is for you: Our new podcast features Gal Nagli from the Wiz Research team, breaking it down with Eden Koby Naftali and Amitai Cohen. Plus: Get the full story behind our recent DeepSeek database discovery that made headlines ⚡
Co-Founding Wiz, R&D and Security Leadership with Roy Reznik
23 december 2024 |
32 min
🎙️ Every great story starts with a beer in the Alps... From building #Adallom to becoming a sommelier — hear Roy Reznik's journey as Co-Founder and VP R&D at @wiz in our podcast season finale! In this episode Eden Koby Naftali & Amitai Cohen dive into: ☁️ Roy's journey from Tel Aviv to London—culture. 🛠️ How companies can scale fast while staying secure. 💡 How R&D should foster a culture where developers proactively embrace security as a core value. 🤖 Thoughts on AI in development — Co-Pilots: where do they excel?
post:Invent with Scott Piper (re:Invent digest)
13 december 2024 |
33 min
🎙️ Unpack AWS re:Invent's top announcements, trends, and what's next for cloud practitioners with @Scott Piper! Join Eden Naftali and Amitai Cohen in our latest #CryingOutCloud episode featuring Scott Piper, Wiz's Principal Cloud Security Researcher and "cloud security historian". In this episode: 🌟 AWS re:Invent highlights: Aurora DSQL, Nova genAI, EKS Auto Mode 🔒 Security updates on RCPs, VPC Block Public Access, Declarative Policies for EC2 🎬 Scott's favorite cloud-themed movies from Wiz Video World (Pulp Encryption, anyone?)
Red Team Tactics with EA’s Johann Rehberger
29 november 2024 |
35 min
Dive into the latest #CryingOutCloud episode featuring Johann Rehberger!
Join Eden and Amitai as they sit down with Johann Rehberger, Red Team Director at @electronicarts and a cybersecurity expert. Johann also publishes innovative security research on his blog, Embrace the Red.
What you'll learn:
📌 Red teaming strategies to strengthen security programs
📌 Insights from Johann’s cutting-edge AI security research and experience
📌 The funny story behind Johann’s alias, Wunderwuzzi
Tune in now! 🎧
Canadian Cybersecurity, Open Source Risks, and AppSec Insights with Tanya Janca
8 november 2024 |
35 min
🎙️ Tune in to the latest #CryingOutCloud episode featuring Tanya Janca, where we dive into all things cloud! Join Eden and Amitai as they welcome Tanya Janca, founder of 'We Hack Purple', and the author of 'Alice and Bob Learn Application Security'. She's seen it all—from launching AppSec programs to teaching secure coding and leading on education at Semgrep. In this episode: 🌐 Building security programs from scratch 🔍 The value of static analysis tools for developers 🇨🇦 The Canadian cybersecurity landscape and her take on global challenges 💡 Tips for securing AI applications in the age of generative AI
Hybrid Cloud Attacks, Linux Malware, and LLMJacking Exposed
29 oktober 2024 |
19 min
🎙️ Ready for the latest on Hybrid Cloud Attacks, Linux Malware, and LLMJacking? Join our hosts Eden Koby Naftali and Amitai Cohen in our NEW #CryingOutCloud episode. In this episode: 📌 The perfctl malware campaign—stealthily mining crypto on thousands of Linux machines undetected for years 📌 Storm-0501 hybrid cloud attacks, targeting everything from hospitals to law enforcement, with ransomware and stolen admin credentials 📌 LLMJacking—the latest evolution in malicious cloud access, selling AI access on underground markets
AI Toolkit Risks, CUPS Vulnerabilities, and Google's Infostealer Defenses
8 oktober 2024 |
24 min
🎙️ Catch the latest episode of #CryingOutCloud, where Amitai Cohen and Eden Koby Naftali tackle key cloud security challenges from AI Toolkit Risks to CUPS Vulnerabilities! Tune in to hear about: 📌 Wiz Research discovered a vulnerability affecting the Nvidia container toolkit 📌 Google's novel Info Stealers Mitigations 📌 All the talk around the CUPS vulnerabilities 📌 How to leverage Atomic Cloud IOCs [And so much more...]
From NASA to GitLab: Democratizing Security, Open Source, and Empowering Women – With: Julie Davila
4 oktober 2024 |
28 min
📢 Tune in for the special episode of Crying Out Cloud with @Gitlab 's Julie Davila! 🚀 Join our Co-host Eden Koby Naftali and the cybersecurity leader Julie Davila, VP of Product Security at GitLab as they dive into: 📌 Balancing transparency in open-source tooling with security risks. 📌 Democratizing security: How GitLab empowers engineers to take ownership of security without disrupting their workflow. 📌 Plus, insights into empowering women in cloud security and why diverse representation is crucial for the industry's future.
Azure DDoS, Certificate Revocations, and ESXi Ransomware
12 augusti 2024 |
25 min
📢 From DDoS attacks to discovering a new cryptojacking campaign, tune in to our NEW episode of #CryingOutCloud to learn about all the latest cloud security news. Join our hosts Eden and Amitai as they dive into the latest cloud security stories: * SeleniumGreed: Wiz Research discovered a new cryptojacking campaign targeting SeleniumGrid * Why your Starbucks app went down? * Internet chaos and lessons learned from DigiCert revoked certificates. * ESXi ransomware: The danger of trusting by name.
Navigating Hyper Growth, AI Impact, and Mandiant Memories - Special Guest: Ryan Kazanciyan
5 augusti 2024 |
38 min
📢 Tune in for an exclusive session with Ryan Kazanciyan on securing a security vendor, hyper-growth, and AI impact in the latest podcast episode of #CryingOutCloud! Join our hosts, Amitai Cohen and Eden Koby Naftali, as they dive into cloud security with Ryan Kazanciyan, our seasoned expert leading security at @Wiz. 🔍 Episode Highlights: 📌 Managing security during hyper growth: challenges and lessons learned. 📌 Ryan's experiences at Mandiant and the impact of the APT1 investigation on his approach to security. 📌 Current security trends and the role of AI in security. 📌 Ensuring safe use of AI tools like ChatGPT within the organization for internal use and product development.
SAPwned: SAP AI Core vulnerabilities - Special Guest: Hillai Ben-Sasson
17 juli 2024 |
9 min
📢 Tune in to our special episode with Hillai Ben-Sasson with all you need to know about #SAPwned. TL;DR - The Wiz Research Team uncovered serious vulnerabilities in SAP AI Core, revealing potential risks in #AI infrastructure.
CROC Talks - Securing DBs, Cloud Threat Intel, and Detection- Special Guest: Snowflakes’ Haider Dost
15 juli 2024 |
30 min
📢 Tune in to Snowflake's Haider Dost for an exclusive session on Securing Databases, Cloud Threat Intelligence, and Detection strategies.
The latest podcast episode of #CryingOutCloud is LIVE! Join our special hosts, @Alon Schindel and @Eden, as they dive deep into the world of cloud security with Haider Dost, Head of Global Threat Detection and Threat Intelligence at Snowflake. 🔍 Episode Highlights: 📌 Recent campaign targeting Snowflake customers. 📌 Discussion on the new mandatory MFA for Snowflake admins and its impact. 📌 Architecture of detection in the cloud & logging. What does it mean to work in a highly regulated environment compared to a fast-growing company like Snowflake. 📌 Defining "good security" in traditional vs. cloud-native settings.
CROC News: Firewall Fumbles, Gitloker Etiquette, and Private Cloud Compute
28 juni 2024 |
24 min
📢 From data privacy norms in the age of AI — tune in to the latest episode of #CryingOutCloud with all you need to know from the cloud security news 🚨 Join Eden Naftali and Amitai Cohen as they dive into: 🔍 How a new AI processing cloud service is challenging data privacy norms.
🛡️ The implications of a potential firewall misconfiguration and how to secure your environment.
🔐 The latest ransomware attacks on GitHub repositories and how to safeguard your data.
⚠️ A new discovery by Wiz research: crypto-jacking campaign targeting Kubernetes clusters.
🐘 Critical remote code execution vulnerability in PHP and how to mitigate the risk.
CROC Talks: RCE Vulnerability in Ollama explained
24 juni 2024 |
11 min
💥 EXCLUSIVE: Wiz Research uncovers CVE-2024-37032, aka #Probllama — a vulnerability in Ollama that that left thousands of #AI models exposed 😲
CROC Talks: Chief Llama Officer and IBM CISO - Jerry Bell
6 juni 2024 |
39 min
What is it like to be IBM's 'Chief Llama Officer'? 🦙 🎙️ Tune in as Jerry Bell shares his journey from crashing his first computer at 10 to leading IBM's Public Cloud Security What's on today's agenda? 😲 Managing a popular 'Mastodon' server post-Twitter acquisition 🛡️ Challenges and surprises as IBM's CISO 🔐 Insights on the security implications of M&A
CROC News: Ninjas, Grand Theft AI, and Backlogged CVEs
27 maj 2024 |
23 min
🎙️ All that's 🔥 in the cloud: From logging and cloud attacks to NVD backlog updates. what's on today's agenda? 1️⃣ Discover how logging bypass made password-spray attacks undetectable. 2️⃣ Learn about the latest way attackers are monetizing cloud access - by selling access to other people's AI models. 3️⃣ NVD's ongoing backlog - Hear about how the industry is dealing with it.
CROC Talks - Threat Models, Cloud Tools, and Security Tales - Special Guest: Kat Traxler
9 maj 2024 |
34 min
Our latest episode of Crying out cloud features none other than Kat Traxler, a seasoned security professional renowned for her expertise in cloud research.🚀 Here's a sneak peek at what we'll cover:
🔍 Threat modeling: Kat's practical insights
🔧 "DeRF": Kat's revolutionary tool and how it can help cloud security practitioners
💡 Dispelling myths about cloud security and how it challenges the OSI model
🔬 Future research directions in cloud security & Kat's latest projects in the field
CROC Talks: Helping Secure Hugging Face Hub - Special Guest: Shir Tamari
4 april 2024 |
11 min
🚨 BREAKING: Wiz Research identifies critical risks in #AI-as-a-service 🚨 Dive into Crying Out Cloud's latest episode, featuring a very special guest, Shir Tamari, head of the research team at Wiz. This episode sheds light on the security challenges that come with the rapid integration of AI technologies. Highlights include: 🚀 Exploring the rapid integration of AI and its associated security risks, identified by Wiz Research in collaboration with Hugging Face. 🛡️ Exposing two significant security flaws within Hugging Face's systems: shared inference and CI/CD systems, which could potentially offer unauthorized access to sensitive data. 📢 Highlighting the critical need for robust security frameworks in AI services. ✅ Demonstrating Hugging Face's dedication to security through the adoption of Wiz CSPM, continuous vulnerability assessments, and annual penetration tests, thereby establishing a high standard in AI safety.
CROC News - XZ Utils backdoor explained
31 mars 2024 |
13 min
The backdoor in XZ Utils is shaking the industry 🔔 How could we not talk about it?
Tune in to the special unscheduled episode of Crying Out Cloud with Eden Naftali and Amitai Cohen as they delve into the stealthy supply chain attack!
In this episode: 🔍 The Alert from CISA regarding CVE-2024-3094, a vulnerability in XZ Utils Data Compression Library versions 5.6.0 and 5.6.1 🛑 The potential risks posed by the embedded malicious code and the unauthorized access it may grant to affected systems 🛡️ Security Team Action Plans
Tune in now!
CROC News: Malicious Repos, Bandwidth Theft, & NVD or NoVD?
26 mars 2024 |
32 min
🎙️ What is a better way to stay updated on cloud security than a NEW Crying Out Cloud episode! Join Eden Naftali and Amitai Cohen as they explore what is new and 🔥: 👾 Open-source repos flooded by malicious code. 💻 What is to become of the National Vulnerability Database? ⛓️ Proof of bandwidth cryptojacking 🛠️ Critical vulnerabilities discovered in popular CI/CD tool
Links:
https://apiiro.com/blog/malicious-code-campaign-github-repo-confusion-attack/
https://github.blog/2024-02-29-keeping-secrets-out-of-public-repositories/
https://research.openanalysis.net/github/lua/2024/03/03/lua-malware.html
https://resilientcyber.substack.com/p/death-knell-of-the-nvd
CROC Talks: Bug Bounty Hunting & Pen Testing with Sam Curry
20 mars 2024 |
41 min
The NEW exclusive interview with hacker extraordinaire Sam Curry on Crying Out Cloud is out!
Join Eden Naftali and Amitai Cohen as they explore the role of a Bug-Bounty Hunter with Sam Curry:
🔑 Learn about Sam's journey into security research
🛠️ Favorite tools and underrated platforms
🤖 The trustworthiness implications of AI-driven technologies in transportation.
🔒 Vulnerabilities within a major tech company's infrastructure. The tradeoff between scanning gigantic IP ranges and selecting the best research targets.
Important links: https://samcurry.net/web-hackers-vs-the-auto-industry/ https://samcurry.net/hacking-apple/ https://samcurry.net/points-com/
CROC News: Automotive Code Leak & Midnight Blizzard's Heist
22 februari 2024 |
28 min
Loading from the Cloud... Season 2 of "CRYING OUT CLOUD" is here! Join our hosts, Eden and Amitai, as they dive into the latest cloud stories that we can't wait to share with you Here's a sneak peek into the season's opening:
🚗 Mercedes-Benz Source Code Exposure: A public GitHub Repo was exposed - allowing unauthorized access to the company's internal servers, including AWS and Azure subscriptions. The credentials remained publicly accessible for 3-4 months. 😱
🌨️ Midnight Blizzard Hits Microsoft: Russian actors (Midnight Blizzard) got into Microsoft's network and stole employee emails, finding a misconfigured account with a weak password. Among other things, they tried to find out what Microsoft knew about their activity.
🔐 Ivanti Vulnerabilities: Ivanti's VPN products exposed vulnerabilities, allowing remote code execution and authentication bypass, exploited by a Chinese Threat Actor.
#15 - Yinon Costica on AI risks, the importance of positivity and his new year's resolutions
21 december 2023 |
34 min
🛡️ Join Eden Naftali & Amitai Cohen's exclusive interview with Yinon Costica, as he brings unparalleled expertise to the table. From his beginnings in Israel's 8200 intelligence unit, through Adallom, which was acquired by Microsoft, to co-founding Wiz
#14 - On Executive Orders And AI (Special Guest - Chris Hughes)
10 december 2023 |
35 min
🎙️ NEW SPECIAL PODCAST EPISODE WITH @CHRIS HUGHES! 🎙️ Here's a sneak peek into our chat: 🛡️ Join Chris, Amitai, and Eden as they unveil intriguing security nuances between public and private sectors. Gain exclusive insights into FedRAMP, straight from Chris's expertise, and his take on the implications of President Biden's AI order for the cybersecurity landscape. 🌐 How exactly does SBOM adoption act as a shield against supply chain breaches? What other strategies can fortify against such attacks? 🔍 Delve into the post-COVID startup world. Chris touches on the intricacies of the challenges faced, offering a glimpse into how these innovative ventures navigate a changed landscape. Tune in for a captivating talk below!
#13 - Leaky CLIs, glitchy CPUs and risky HARs
30 november 2023 |
23 min
🎙️ NEW PODCAST EPISODE ALERT! Eden and Amitai are back with another wild ride through the cloudy skies on "Crying Out Cloud"! Here's the scoop for today's adventure: 01:36 - Okta Support System Compromise: 🕵️♂️ We unravel the mystery surrounding an unknown threat actor's access to Okta's customer support system. What's an HAR file, and why should you care?
06:30 - Azure CLI Credential Leak (CVE-2023-36052): 💻 Get the lowdown on Microsoft's Azure CLI vulnerability and how this leak happened, why defaults matter, and what the patch means for your Azure CLI setup.
13:17 - Reptar and Cachewarp CPU Vulnerabilities: 💡 CPU vulnerabilities are a trend we can't ignore! Discover why Reptar and Cachewarp CPU vulnerabilities might sound daunting but aren't necessarily the cloud apocalypse. Plus, the juicy details on who's patched and who's snoozing on this issue
Links:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36052
https://cloud.google.com/blog/products/identity-security/google-researchers-discover-reptar-a-new-cpu-vulnerability
https://lock.cmpxchg8b.com/reptar.html
https://cachewarpattack.com/
https://sec.okta.com/harfiles
#12 - Chomping at the Bits with Chompie
19 oktober 2023 |
33 min
In our new Crying Out Cloud podcast episode, we're joined by the LEGENDARY Valentina Palmiotti, the one and only Chompie 🚀 ✨ In this episode, you'll find: 1. The surprising story behind her hacker alias - "Chompie," 🕵️♀️ 2. Valentina's insights from her Blackhat presentation, where she challenges security boundaries with kernel post-exploitation techniques 🤯 3. A peek into her day-to-day at IBM X-Force, from research to code auditing and vulnerability analysis 💼 And more!
#11 - From SAS token to AI data exposure (with special guest - Hillai Ben-Sasson)
21 september 2023 |
22 min
More info here: https://www.wiz.io/blog/38-terabytes-of-private-data-accidentally-exposed-by-microsoft-ai-researchers
#10 - fwd:cloudsec With Special Guest Scott Piper
19 september 2023 |
29 min
fwd:cloudsec event highlights podcast special - Featuring our special wizard guest Scott Piper, who is also the co-founder of fwd:cloudsec! A non-profit conference on cloud security that discusses all the major cloud platforms, both attack and defense research, limitations of security features, the pros and cons of different security strategies, and more!
fwd:cloudsec 2023 videos:
https://www.youtube.com/playlist?list=PLCPCP1pNWD7MR1SwekwbZls9TGzqo_LHx
#9 - The collapse of LAPSUS$ and the risks of AI data poisoning
14 september 2023 |
27 min
👀 Here's a sneak peek at today’s episode:
🔒 Stay ahead of the game! LAPSUS$ Hackers may be making waves. Two members of this notorious group faced consequences in the UK, but shockingly, they continued their hacking activities even while under house arrest.
🤖 Data Poisoning in AI Training is a growing concern. Hackers can manipulate the data used to train AI models, introducing risks and vulnerabilities. Validating data integrity and randomizing data ingestion times are useful mitigations against this threat.
💻 The WinRAR Vulnerability (CVE-2023-38831)! This flaw was exploited against crypto-traders to infect their devices with malware, but should be considered a low concern for cloud customers unless using virtual desktops.
Important links:
https://gizmodo.com/hackers-lapsus-uber-nvidia-rockstar-games-microsoft-1850766324
https://www.bbc.com/news/technology-66549159
https://www.cisa.gov/sites/default/files/2023-08/CSRB_Lapsus%24_508c.pdf
https://duo.com/decipher/lapsususd-analysis-finds-need-for-better-iam-mfa-deployments
https://www.youtube.com/watch?v=h9jf1ikcGyk
#8 - GameOverlay – privilege escalation vulnerabilities in Ubuntu
30 augusti 2023 |
23 min
🍿🤏 Everything you need to know about this month's cloud security drama in the latest "Crying Out Cloud" episode! In this edition, we explore THREE captivating stories 📚🔍 1️⃣ "GameOverlay" unveiled: Ubuntu's privilege escalation vulnerabilities 😱 — Wiz Research uncovered a pair of vulnerabilities that's affecting 40% of Ubuntu cloud machines! We've got the scoop on what you must know. 2️⃣ Unmasking "P2PInfect": The botnet targeting Redis! 🤖 — Ever wondered how a botnet hijacks your exposed Redis instances? Let's get into the nitty-gritty of this attack and find out how to defend your environment. 3️⃣ Jumpcloud's dance with North Korea: A supply chain saga 🕊️ -—Join us as we uncover the tale of Jumpcloud's breach and its uncanny link to North Korea. Dive deep into the investigation with us.
Important links: 1. https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability 2. https://ubuntu.com/security/CVE-2023-2640 3. https://ubuntu.com/security/CVE-2023-32629 4. https://www.cadosecurity.com/redis-p2pinfect/ 5. https://unit42.paloaltonetworks.com/peer-to-peer-worm-p2pinfect/ 6. https://www.mandiant.com/resources/blog/north-korea-supply-chain 7. https://www.sentinelone.com/labs/jumpcloud-intrusion-attacker-infrastructure-links-compromise-to-north-korean-apt-activity/ 8. https://jumpcloud.com/blog/security-update-incident-details 9. https://jumpcloud.com/support/july-2023-iocs 10. https://github.blog/2023-07-18-security-alert-social-engineering-campaign-targets-technology-industry-employees/ 11. https://blog.phylum.io/sophisticated-ongoing-attack-discovered-on-npm/
#7 - The Future Of The Cloud (Special Guest - Corey Quinn)
16 augusti 2023 |
36 min
🔥 SPECIAL EPISODE ALERT 🔥 @Corey Quinn Joins the Party — in this week's incredible episode of "Crying Out Cloud" 🥳 Meet our remarkable hosts: ✨ @Eden, the tech-savvy wizard from the CTO Team at Wiz ✨ @Amitai, our expert from the Threat Research Team at Wiz And for this special occasion, we're rolling out the red carpet for: 🎊 COREY QUINN! 🎊 Chief Cloud Economist at The Duckbill Group, the mastermind behind Last Week in AWS, and the charismatic host of the Screaming in the Cloud podcast. Corey is not just a cloud icon – he's a cloud ROCKSTAR 🎸 On the producer's desk: 🕹️ @Alon Schindel, our powerhouse Director of Data and Threat Research at Wiz — In this unforgettable episode, we explore: 💥 The Microsoft MSA incident – a turning point or a fading memory? 💡 The cloud's revolutionary journey over the past decade 🌍 Cloud usage in today's economic climate 💎 Often overlooked but golden cloud services 🛡 Why cloud misconfigurations are still a major issue AND... We put Corey in the hot seat with a speed round that's packed with laughs and surprises!
#6 - Chinese Spies Acquire Keys To The Azure Kingdom
31 juli 2023 |
31 min
Popcorn ready? 🍿 Ep. 6 of "Crying Out Cloud" is now LIVE — and it's a thriller! 🤯 1:42 📬 Chinese Hackers Steal US Gov Emails 12:53 🧨 Silent Bob & the Team TNT Comeback 18:41 🇷🇺 Russian Hackers Exploit Office Zero Day 26:10 🐍 Footloose's 2023 Object-Oriented Sequel: PyLoose Important links: https://msrc.microsoft.com/blog/2023/07/microsoft-mitigates-china-based-threat-actor-storm-0558-targeting-of-customer-email/ https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-193a https://blogs.microsoft.com/on-the-issues/2023/07/11/mitigation-china-based-threat-actor/ https://www.microsoft.com/en-us/security/blog/2023/07/14/analysis-of-storm-0558-techniques-for-unauthorized-email-access/ https://www.wired.com/story/microsoft-cloud-attack-china-hackers/ https://arstechnica.com/security/2023/07/microsoft-takes-pains-to-obscure-role-in-0-days-that-caused-email-breach/ https://blog.aquasec.com/threat-alert-anatomy-of-silentbobs-cloud-attack https://blog.aquasec.com/teamtnt-reemerged-with-new-aggressive-cloud-campaign https://permiso.io/blog/s/agile-approach-to-mass-cloud-cred-harvesting-and-cryptomining/ https://www.sentinelone.com/labs/cloudy-with-a-chance-of-credentials-aws-targeting-cred-stealer-expands-to-azure-gcp/ https://twitter.com/AbbyMCH/status/1679509312132005888 https://sysdig.com/blog/scarleteel-2-0/ https://twitter.com/maddiestone/status/1678843059294076928 https://www.microsoft.com/en-us/security/blog/2023/07/11/storm-0978-attacks-reveal-financial-and-espionage-motives/ https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36884 https://twitter.com/cyb3rops/status/1680962212804939776 https://twitter.com/serghei/status/1679246339698315265 https://www.wiz.io/blog/pyloose-first-python-based-fileless-attack-on-cloud-workloads
#5 - MOVEit Transfer 0day vulnerabilities (Special Guest: Scott Piper)
26 juni 2023 |
34 min
Join your favorite hosts, @Eden and @Amitai, on the latest "Crying Out Cloud" rollercoaster 🎢 Spoiler Alert: We've got @Scott Piper, the cloud security guru, joining the conversation too! His insights are amazing, so we've reserved a special upcoming episode just for him 😎 On today's journey, we are: 1️⃣ Peeling back the layers of MOVEit Transfer 0day vulnerabilities 🕵️ 2️⃣ Breaking down CVSSv4💥 3️⃣ Sharing insider takeaways from fwd:cloudsec 2023 (FOMO, anyone?).🔮 4️⃣ Getting real about the Barracuda ESG 0day vulnerability (we're not fishing around! 🐠).
Important Links:
https://www.first.org/cvss/v4-0/
https://thehackernews.com/2023/06/third-flaw-uncovered-in-moveit-transfer.html
https://www.mandiant.com/resources/blog/barracuda-esg-exploited-globally
https://fwdcloudsec.org/schedule.html
#4 - Daisy Chain - A Double Supply Chain Attack
18 maj 2023 |
25 min
Join our lively hosts, Eden and Amitai, as they explore the most fascinating cloud security news of the month.
On this episode:
🧃🔗 More juice on 3CX supply chain attack
✂️💔 PaperCut vulnerabilities
📦🔓 Capita exposed a bucket with sensitive data for 7 years
🚗☁️ Toyota cloud misconfiguration leaked customer data for 10 years
🚢🔄 Trend of hijacking containers for traffic routing
Important links:
1. https://techcrunch.com/2023/05/12/toyota-japan-exposed-millions-locations-videos/
2. https://zetter.substack.com/p/updates-and-timeline-for-3cx-and
3. https://doublepulsar.com/capitas-standard-industry-practice-633gb-open-cloud-storage-5d87e7e96a70
4. https://therecord.media/iranian-state-sponsored-hackers-exploiting-printer-vulnerability
#3 - The BingBang Vulnerability (Special Guest: Ami Luttwak)
24 april 2023 |
32 min
For crying out #cloud! Episode 3 of our cloud security podcast is live and you haven't tuned in yet?
Hot off the cloud servers! ☁️📰🎙️
🔎 The #BingBang misconfiguration on Microsoft Bing search engine
🕵️ North Korean supply-chain attack targets crypto companies
🌩️ Iranian cloud destruction operation is making headlines
💻 QueueJumper: The Windows vulnerability disclosed last Patch Tuesday
Eden and Amitai on the mic🎤 With special guest Ami Luttwak, Wiz Co-Founder and CTO!
Important Links: https://www.wiz.io/blog/bingbang https://www.wiz.io/blog/azure-active-directory-bing-misconfiguration https://www.wired.com/story/3cx-supply-chain-attack-north-korea-cryptocurrency-targets/ https://www.3cx.com/blog/news/security-incident-updates/ https://www.sentinelone.com/blog/smoothoperator-ongoing-campaign-trojanizes-3cx-software-in-software-supply-chain-attack/ https://www.crowdstrike.com/blog/crowdstrike-detects-and-prevents-active-intrusion-campaign-targeting-3cxdesktopapp-customers/ https://securelist.com/gopuram-backdoor-deployed-through-3cx-supply-chain-attack/109344/ https://www.microsoft.com/en-us/security/blog/2023/04/07/mercury-and-dev-1084-destructive-attack-on-hybrid-environment/ https://research.checkpoint.com/2023/queuejumper-critical-unauthorized-rce-vulnerability-in-msmq-service/
#2 - Hijacked Websites In China Redirect Traffic
16 mars 2023 |
27 min
🎉🎙️ Hold on to your headphones!
The newest episode of the "Crying Out Cloud" podcast is here, and it's an absolute rollercoaster 🎢
Join our charismatic hosts, Eden and Amitai, as they uncover the most captivating cloud security news of the month.
In this action-packed episode:
🕵️♂️ Mysterious redirections to adult websites in East Asia
🎣 Crafty hackers using fake Google ads for credential theft
🦪 Don't panic, stay clam: The ClamAV vulnerability
🕹️ Gaming industry under fire: Minecraft and Dota 2 incidents
🇺🇸 US Department of Defense data exposure drama
🔗 And the GoDaddy supply chain attack that everyone's talking about!
Important Links:
1. https://www.wiz.io/blog/redirection-roulette
2. https://aboutus.godaddy.net/newsroom/company-news/news-details/2023/Statement-on-recent-website-redirect-issues/default.aspx
3. https://www.sentinelone.com/blog/cloud-credentials-phishing-malicious-google-ads-target-aws-logins/
4. https://permiso.io/blog/s/watering-hole-attack-targets-aws-users/
5. https://blog.gradle.org/wrapper-attack-report
6. https://lunarlogs.com/2023/01/29/double-jeopardy-mcos-backdooring-players-get-shut-down/
7. https://techcrunch.com/2023/02/21/sensitive-united-states-military-emails-spill-online/
8. https://thehackernews.com/2023/02/critical-rce-vulnerability-discovered.html
9. https://decoded.avast.io/janvojtesek/dota-2-under-attack-how-a-v8-bug-was-exploited-in-the-game/
#1 - CI/CD Supply Chain Attack
2 mars 2023 |
26 min
Welcome to "Crying Out Cloud," the monthly podcast that keeps you up to date with the latest cloud security news. Hosted by experts Eden Naftali and Amitai Cohen, each episode provides in-depth coverage of the most important vulnerabilities and incidents from the previous month. Tune in for insightful analysis and expert recommendations to help you safeguard your cloud infrastructure.
Important links:
https://circleci.com/blog/jan-4-2023-incident-report/
https://www.wiz.io/blog/cve-2022-44877-critical-rce-in-centos-control-web-panel-exploited-in-the-wild
https://www.dailydot.com/debug/no-fly-list-us-tsa-unprotected-server-commuteair/
https://therecord.media/hackers-exploiting-vulnerability-affecting-zoho-manageengine-products-rapid7
https://www.theverge.com/2023/1/24/23569109/goto-hack-lastpass-breach-encrypted-backups-key
00:00
-00:00
En liten tjänst av I'm With Friends. Finns även på engelska.