CloudSec Academy

Bienvenido a CloudSec Academy, tu guía para navegar por la sopa de alfabeto de los acrónimos de seguridad en la nube y la jerga de la industria. Cortar el ruido con contenido claro, conciso y elaborado por expertos que cubra los fundamentos de las mejores prácticas.

Brute Force Attacks

Equipo de expertos de Wiz

A brute force attack is a cybersecurity threat where a hacker attempts to access a system by systematically testing different passwords until a correct set of credentials is identified.

AWS Security Risks

Equipo de expertos de Wiz

This article examines common AWS security challenges, including identity and access control gaps, data exposure risks, and monitoring blind spots.

Shadow Data

Equipo de expertos de Wiz

Shadow data is any data that is created, stored, or shared outside of an organization's formal IT environment and management policies.

Rootkits Explained

Equipo de expertos de Wiz

A rootkit is a suite of software designed to grant a cyberattacker privileged access while disguising the invasion to evade detection.

What is a Reverse Shell Attack?

Equipo de expertos de Wiz

A reverse shell attack is a type of cyberattack where a threat actor establishes a connection from a target machine (the victim's) to their machine.

What is an Attack Surface?

Equipo de expertos de Wiz

An attack surface is refers to all the potential entry points an attacker could exploit to gain unauthorized access to a system, network, or data.

7 AI Security Risks You Can't Ignore

Equipo de expertos de Wiz

Learn about the most pressing security risks shared by all AI applications and how to mitigate them.

What is Shadow AI?

Equipo de expertos de Wiz

Shadow AI is the unauthorized use or implementation of AI that is not controlled by, or visible to, an organization’s IT department.

Malicious Code Explained

Equipo de expertos de Wiz

Malicious code is any software or programming script that exploits software or network vulnerabilities and compromises data integrity.

Security Misconfigurations

Equipo de expertos de Wiz

A security misconfiguration is when incorrect security settings are applied to devices, applications, or data in your infrastructure.

The most common Kubernetes security issues and challenges

Equipo de expertos de Wiz

The open-source nature of Kubernetes means that it is continually being updated and improved, which introduces new features and functionalities—as well as new vulnerabilities. Understand the most pressing K8 security challenges.

The top 11 open-source Kubernetes security tools

It’s a good idea to consider a range of Kubernetes security tools. Open source solutions can greatly improve the security of your Kubernetes clusters, so this section explores the top 11 open-source Kubernetes security tools that can help to safeguard your Kubernetes environment.

7 Cloud Security Challenges

Equipo de expertos de Wiz

As companies transition to the cloud, they are sure to be confronted with these seven security challenges.

8 All-Too-Common Cloud Vulnerabilities

Equipo de expertos de Wiz

We outline the most common cloud vulnerabilities with real-life examples of attacks that exploited these vulnerabilities, and simple steps you can take to mitigate them.

Lateral Movement Explained

Equipo de expertos de Wiz

Lateral movement is a cyberattack technique used by threat actors to navigate a network or environment in search of more valuable information after gaining initial access.

Shadow IT Explained

Equipo de expertos de Wiz

Shadow IT is an employee’s unauthorized use of IT services, applications, and resources that aren’t controlled by—or visible to—an organization’s IT department.