From Hotmail Hacks to AI hype, CTFs & Cloud Guardian: with Ashish Rajan
๐ AI, cloud security & Fortune 500 challenges! This week on *Crying Out Cloud*, we chat with Ashish Rajan. Tune in! ๐
Omer Mosheiov
ํ์บ์คํธ
Ingress Nightmare: How a Single Request Could Take Over Your K8s Cluster
๐๏ธ All you need to know on our latest discovery #IngressNightmare ๐จ
In this episode of Crying Out Cloud, Amitai Cohen & Eden Koby Naftali are joined by Nir Ohfeld โ Head of Vulnerability Research at Wiz.
Nir and his team have uncovered some of the most impactful vulnerabilities affecting cloud and SaaS applications. In this episode, he's diving into the latest discovery, a critical vulnerability in Ingress-NGINX:
โข How the team uncovered a critical unauthenticated RCE in NGINX Ingress Controller โข Why Kubernetes admission controllers might be the next big attack surface โข The wild journey of hunting vulnerabilities in the cloud
๋ ๋ง์ ์ํผ์๋
Hackers Are Hijacking Cloud Keys: The Rise of Cloud-Native Ransomware ๐
From Supply Chain Attacks to S3 Ransomware: Critical Cloud Security Stories You Need to Know
Omer Mosheiov
Norwegian Cloud Security, Open Source Tools, and Financial Sector Risks with Karim El-Melhaoui
Karim El-Melhaoui joins Amitai & Eden to tackle cyber risk, open-source gaps & cloud security in Norway!
Omer Mosheiov
Crying Out Cloud๋ ๋ด์ค๋ ํฐ์ด๊ธฐ๋ ํฉ๋๋ค!
์์ ๋ฐ ์ ๋ณด ์ ์ง: ์ต์ ํด๋ผ์ฐ๋ ๋ณด์ ๋ด์ค, ์ค์ ๊ณต๊ฒฉ ์ธ์ฌ์ดํธ ๋ฐ ์ ๋ฌธ๊ฐ ์ง์นจ์ ๋ฐ์ ํ๊ฒฝ์ ๋ณดํธํ์ญ์์ค.
๊ฒ์์ ํ๋๋ฅผ ๋ฐ๊พธ๋ ๋ด์ค
์ ๊ณ๋ฅผ ๋คํ๋ค๊ณ ์๊ณ ์ฌ๋ฌ๋ถ์ ๊ด์ฌ์ด ํ์ํ ์ต์ ํด๋ผ์ฐ๋ ๋ณด์ ์ทจ์ฝ์ฑ๊ณผ ํ์ ์ ๋ํ ์์ฝ์ ๋๋ค.
๊ณ ์ ํ Wiz ์ธ์ฌ์ดํธ
์ฐ๊ตฌ ๋ฐ์ดํฐ ๋ด๋ถ ์ดํด๋ณด๊ธฐ - ์ค์ ํด๋ผ์ฐ๋ ํ๊ฒฝ์์ ํ์งํ ์ค์ ๊ณต๊ฒฉ ๊ฒฝ๋ก์ ํต๊ณ๋ฅผ ๊ธฐ๋ฐ์ผ๋ก ํฉ๋๋ค.
์ค์ ํ ์คํธ๋ฅผ ๊ฑฐ์น ์กฐ์ธ
ํ์ฌ์์ ๋ฐ์ดํฐ ์นจํด๋ฅผ ๋ฐฉ์งํ๋ ๋ฐฉ๋ฒ๊ณผ ์ ๋ฐ์ ์ธ ํด๋ผ์ฐ๋ ๋ณด์ ์ ๋ต์ ๊ฐ์ ํ๋ ๋ฐฉ๋ฒ์ ๋ํ ์ํ ์ฐ๊ตฌ ํ์ ํ์ ๋๋ค.
ํด๋ผ์ฐ๋ ๋ณด์์ ์ต์ ์ ๋ฐ์ดํธ๋ฅผ ๋ฐ์ ํธ์งํจ์ผ๋ก ์ง์ ๋ฐ์ผ๋ ค๋ฉด ๋ฑ๋กํ์ญ์์ค.