Last Week in Cloud Security — July 4
June 27 — July 04
Vulnerabilities and Case Studies
The regreSSHion Bug — CVE-2024–6387
An Unauthenticated Remote Code Execution (RCE) vulnerability in OpenSSH’s server (sshd) on glibc-based Linux systems.
Publicly Exposed AWS SSM Command Documents
Today, I’ll be looking at Amazon SSM Command Documents. Read on for details on the research, including yet more evidence that Access Keys will leak anywhere there are public resources available.
Splunk fixed tens of flaws in splunk enterprise and cloud platform
Technology company Splunk released security updates to address 16 vulnerabilities in Splunk Enterprise and Cloud Platform.
Worth Knowing
Single Sign-On Or Single Point of Failure?
No one can argue with the convenience that single sign-on (SSO) brings to users or the security and efficiency gains organizations reap from the lower administrative overhead.
A Look at Container Security Through the Lens of DevOps
Containerization has revolutionized application development, deployment, and management — and for good reason. The ability to automatically wrap an application and its dependencies into a single, easily deployable package helps developers focus on what they do best: writing code.
Your Feedback
Thanks for reading! We’ll be happy to get your claps 👏 or any feedback in the comments below.
