Loading from the Cloud... 

Season 2 of "CRYING OUT CLOUD" is here!

Join our hosts, @Eden and @Amitai, as they dive into the latest cloud stories that we can't wait to share with you

Here's a sneak peek into the season's opening:
 
🚗 Mercedes-Benz Source Code Exposure:
A public GitHub Repo was exposed - allowing unauthorized access to the company's internal servers, including AWS and Azure subscriptions. The credentials remained publicly accessible for 3-4 months. 😱

🌨️ Midnight Blizzard Hits Microsoft:
Russian actors (Midnight Blizzard) got into Microsoft's network and stole employee emails, finding a misconfigured account with a weak password. Among other things, they tried to find out what Microsoft knew about their activity.

🔐 Ivanti Vulnerabilities:
Ivanti's VPN products exposed vulnerabilities, allowing remote code execution and authentication bypass, exploited by a Chinese Threat Actor. 

CROC News: Automotive Code Leak & Midnight Blizzard's Heist

Welcome to "Crying Out Cloud," the monthly podcast that keeps you up to date with the latest cloud security news. Hosted by experts Eden Naftali and Amitai Cohen, each episode provides in-depth coverage of the most important vulnerabilities and incidents from the previous month. Tune in for insightful analysis and expert recommendations to help you safeguard your cloud infrastructure.

#1 - CI/CD Supply Chain Attack

🔎For crying out #cloud! Episode 3 of our cloud security podcast is live and you haven't tuned in yet? 
 
Hot off the cloud servers! ☁️📰🎙️ 

🔎 The #BingBang vulnerability  - a  misconfiguration on Microsoft Bing search engine 
🕵️ North Korean supply-chain attack targets crypto companies
🌩️ Iranian cloud destruction operation is making headlines
💻 QueueJumper: The Windows vulnerability disclosed last Patch Tuesday

Eden and Amitai on the mic🎤 With special guest Ami Luttwak, Wiz Co-Founder and CTO! 

#3 - The BingBang Vulnerability (Special Guest: Ami Luttwak)

The NEW exclusive interview with hacker extraordinaire Sam Curry on Crying Out Cloud is out!

Join Eden Naftali and Amitai Cohen as they explore the role of a Bug-Bounty Hunter with Sam Curry: 

🔑 Learn about Sam's journey into security research

🛠️ Favorite tools and underrated platforms

🤖 The trustworthiness implications of AI-driven technologies in transportation.

🔒 Vulnerabilities within a major tech company's infrastructure. The tradeoff between scanning gigantic IP ranges and selecting the best research targets.

CROC Talks: Bug Bounty Hunting & Pen Testing with Sam Curry

리소스

더 많은 에피소드

CROC News: Automotive Code Leak & Midnight Blizzard's Heist

#1 - CI/CD Supply Chain Attack

#3 - The BingBang Vulnerability (Special Guest: Ami Luttwak)

Crying Out Cloud는 뉴스레터이기도 합니다!

게임의 판도를 바꾸는 뉴스

고유한 Wiz 인사이트

실전 테스트를 거친 조언