Threat Post

SaaS Attacks: Lessons from Real-Life Misconfiguration Exploits

There is a way to protect users from deceptive OAuth apps, misconfigurations and misappropriated user permissions. SaaS Security Posture Management (SSPM) takes an automated approach to tracking, and ...
InfoWorld

Cloud misconfiguration: The security threat too often overlooked

I’m seeing a lot of cloud configuration errors in the real world—and it’s scaring the hell out of me A survey of 300 IT professionals by Fugue, a cloud infrastructure security provider, reveals that ...
heise online

Awareness for Web Security: The OWASP Top Ten 2025

The Open Worldwide Application Security Project (OWASP) presented the first release candidate of the OWASP Top Ten 2025 at its "Global AppSec USA" conference: the list of the biggest security risks ...
CSOonline

Group permission misconfiguration exposes Google Kubernetes Engine clusters

It's easy for admins to misunderstand what GKE considers authenticated users and set permissions that could allow anyone with a Google account to access their systems. Researchers warn that many ...