Cloud Security News this week 16 February 2022 - https://cloudsecuritypodcast.tv/cloud-security-news/

Brought you by JupiterOne - Find out more about them at https://jupiterone.com/csp

• Google’s Cybersecurity Action Team has released Threat Horizon’s report this month. The report can be accessed here
• Staying in theme with Google Cloud (which also happens to be our theme for this month at Cloud Security Podcast).  This week they have reported a low severity vulnerability in the Linux kernel's  function. The attack uses unprivileged user namespaces and under certain circumstances this vulnerability can be exploitable for container breakout. You can find out more about this vulnerability here. 
• Azure has announced Azure Payment HSM in preview in East US and North Europe. You can find out more about it here.
• Cloud Security Alliance’s Technology and Cloud Security Maturity report. You can read the entire report here.
• Have you heard about the Internet Society or ISOC? Its one of the oldest global nonprofit with a goal of  keeping the Internet as a force for good: open, globally connected, secure, and trustworthy. The researchers at Clario recently discovered an open and unprotected Microsoft Azure blob repository containing millions of files with personal and login details belonging to ISOC members. A blob container named ISOC contained millions of json files that were structured to include login, password and email. Clario reported this to ISOC and the repository was subsequently secured. ISOC also confirmed that they have not seen any instances of malicious access to member data as a result of this issue. You can read more about this here.

Podcast Twitter - Cloud Security Podcast (@CloudSecPod) Instagram - Cloud Security News