Cloud Security Archives • Page 6 of 6 • Daily CyberSecurity

Critical Cisco ISE Cloud Vulnerability (CVSS 9.9) with PoC Exploit Threatens AWS, Azure, OCI Cisco ISE, CVE-2025-20286

Critical Cisco ISE Cloud Vulnerability (CVSS 9.9) with PoC Exploit Threatens AWS, Azure, OCI

Do Son June 5, 2025

Cisco has patched a critical vulnerability (CVE-2025-20286, CVSS 9.9) that affects cloud-based deployments of its Identity Services...

JINX-0132: Cryptojackers Exploit Misconfigured DevOps Environments Cryptojacking, DevOps Security

JINX-0132: Cryptojackers Exploit Misconfigured DevOps Environments

Do Son June 3, 2025

Wiz Threat Research has uncovered a stealthy cryptojacking operation exploiting misconfigured DevOps environments. Dubbed “JINX-0132”, the campaign...

VMware Cloud Foundation Vulnerable to Unauthorized Access and Data Exposure CVE-2023-34063 VCF security, unauthorized access

VMware Cloud Foundation Vulnerable to Unauthorized Access and Data Exposure

Do Son May 20, 2025

Broadcom has released important security updates for VMware Cloud Foundation, addressing three privately reported vulnerabilities that could...

Critical Misconfiguration in Bitnami Pgpool Enables Unauthenticated PostgreSQL Access (CVE-2025-22248) Pgpool, Unauthenticated Access

Critical Misconfiguration in Bitnami Pgpool Enables Unauthenticated PostgreSQL Access (CVE-2025-22248)

Do Son May 14, 2025

A critical security vulnerability has been identified in the Bitnami Pgpool-II Docker image and the bitnami/postgres-ha Kubernetes...

Microsoft Patches Four Critical Azure and Power Apps Vulnerabilities, Including CVSS 10 Privilege Escalation Smart App Control blocking Armoury Crate, ROG Ally Defender false positive 2026 Microsoft Zero-Day, Cloud Files UAF Microsoft Access end of life CVE-2025-21298 Azure Vulnerabilities

Smart App Control blocking Armoury Crate, ROG Ally Defender false positive 2026 Microsoft Zero-Day, Cloud Files UAF Microsoft Access end of life CVE-2025-21298 Azure Vulnerabilities

Microsoft Patches Four Critical Azure and Power Apps Vulnerabilities, Including CVSS 10 Privilege Escalation

Do Son May 9, 2025

Microsoft has addressed a cluster of critical vulnerabilities affecting several of its core cloud services—including Azure Automation,...

Commvault Updates Security Advisory After Nation-State Threat Actor Activity in Azure Commvault, nation-state threat

Commvault Updates Security Advisory After Nation-State Threat Actor Activity in Azure

Do Son April 30, 2025

Commvault has issued a crucial update to its March 7, 2025, security advisory following the detection of...

“ConfusedComposer”: GCP Composer Vulnerability Allows Privilege Escalation GCP Composer Privilege Escalation

“ConfusedComposer”: GCP Composer Vulnerability Allows Privilege Escalation

Do Son April 23, 2025

Tenable Research has identified a now-patched privilege-escalation vulnerability in Google Cloud Platform (GCP) dubbed “Confused Composer”. The...

CISA Warns of Credential Risks Tied to Oracle Cloud Breach Oracle breach, credential compromise

CISA Warns of Credential Risks Tied to Oracle Cloud Breach

Do Son April 17, 2025

Early this month, Oracle has discreetly notified select clients that attackers successfully breached one of its legacy...

Subdomain Takeovers: A Growing Supply Chain Threat Subdomain takeover, supply chain attack

Subdomain Takeovers: A Growing Supply Chain Threat

Do Son April 15, 2025

Subdomain takeovers, a type of attack where an attacker gains control of an organization’s improperly configured or...

Google Launches Unified Security Powered by Gemini AI, Enhances Enterprise Protection Google Unified Security Gemini AI Security

Google Launches Unified Security Powered by Gemini AI, Enhances Enterprise Protection

Do Son April 9, 2025

Google has announced the launch of “Google Unified Security,” an integrated security solution powered by Gemini AI,...

Oracle Data Breach: Authenticity Confirmed Despite Denial Oracle breach, data breach, cloud security

Oracle Data Breach: Authenticity Confirmed Despite Denial

Do Son April 8, 2025

At the end of March, a hacker claimed to have breached Oracle’s cloud infrastructure, allegedly exfiltrating approximately...

The Future of Cloud Security: Automation Strategies and Techniques

Do Son October 10, 2024

As cloud computing keeps getting better, so does making sure it’s safe. The future of keeping cloud...

Critical Alert 3 Active Exploits Detected Today

Critical Alert