🎙️ All that's 🔥 in the cloud: From logging and cloud attacks to NVD backlog updates. 

what's on today's agenda?
1️⃣ Discover how logging bypass made password-spray attacks undetectable.
2️⃣ Learn about the latest way attackers are monetizing cloud access - by selling access to other people's AI models.
3️⃣ NVD's ongoing backlog - Hear about how the industry is dealing with it.

CROC News: Ninjas, Grand Theft AI, and Backlogged CVEs

Our latest episode of Crying Out Cloud features none other than Kat Traxler, a seasoned security professional renowned for her expertise in cloud research.🚀

Here's a sneak peek at what we'll cover:
🔍 Threat modeling: Kat's practical insights
🔧 "DeRF": Kat's revolutionary tool and how it can help cloud security practitioners
💡 Dispelling myths about cloud security and how it challenges the OSI model
🔬 Future research directions in cloud security & Kat's latest projects in the field

CROC Talks - Threat Models, Cloud Tools, and Security Tales - Special Guest: Kat Traxler

🚨 BREAKING: Wiz Research identifies critical risks in #AI-as-a-service 🚨

Dive into Crying Out Cloud's latest episode, featuring a very special guest, Shir Tamari, head of the research team at Wiz. This episode sheds light on the security challenges that come with the rapid integration of AI technologies. Highlights include:

🚀 Exploring the rapid integration of AI and its associated security risks, identified by Wiz Research in collaboration with Hugging Face.

🛡️ Exposing two significant security flaws within Hugging Face's systems: shared inference and CI/CD systems, which could potentially offer unauthorized access to sensitive data.

📢 Highlighting the critical need for robust security frameworks in AI services.

✅ Demonstrating Hugging Face's dedication to security through the adoption of Wiz CSPM, continuous vulnerability assessments, and annual penetration tests, thereby establishing a high standard in AI safety.

CROC Talks: Helping Secure Hugging Face Hub - Special Guest: Shir Tamari

What is it like to be  @IBM 's 'Chief Llama Officer'? 🦙 

🎙️ Tune in as Jerry Bell shares his journey from crashing his first computer at 10 to leading IBM's Public Cloud Security

What's on today's agenda?

😲 Managing a popular 'Mastodon' server post-Twitter acquisition
🛡️ Challenges and surprises as IBM's CISO 
🔐 Insights on the security implications of M&A

CROC Talks: Chief Llama Officer and IBM CISO - Jerry Bell

Resources

More episodes

CROC News: Ninjas, Grand Theft AI, and Backlogged CVEs

CROC Talks - Threat Models, Cloud Tools, and Security Tales - Special Guest: Kat Traxler

CROC Talks: Helping Secure Hugging Face Hub - Special Guest: Shir Tamari

Crying Out Cloud Newsletter