GigaTap articles tagged cloud security.
- AWS CIRT update: know the help boundary before an incident - AWS updated its CIRT guidance with clearer engagement paths, TTC threat intelligence, and tooling. The useful work is checking support, logs, and DFIR gaps
- Cloud Integrations Turn Small Errors Into Real Risk - A Dark Reading advisory highlights a familiar cloud failure chain: over-permissioned roles, discoverable secrets, and non-human identities.
- Weaviate Cloud RBAC gets sharper access boundaries - Weaviate Cloud added Editor and Viewer roles. The useful impact is narrower console access for teams moving Weaviate into wider operational use.
- AWS Network Firewall gets a cleaner policy lever - AWS’s URL and domain category filtering can reduce brittle domain-list work, but teams still need clear scope, exception handling, and logging.
- Kubernetes CVEs will look louder because the records were wrong - Kubernetes is updating old CVE records to show several architectural risks remain unfixed across all versions. Scanner findings may increase, but the expos
- Azure Backup for AKS dispute shows a CVE gap - A researcher says Microsoft silently fixed an Azure Backup for AKS issue after rejecting it. Microsoft says the behavior was expected. Defenders still need
- AWS KY3P report gives customers a cleaner risk evidence path - AWS has completed its S&P Global KY3P assessment. The report can help customers reduce duplicated supplier due diligence, but it does not replace their own
- Gaming Security Is Bigger Than Player Accounts - Microsoft’s gaming security framing shows why platforms, studios, commerce, identity, player safety, and unreleased IP must be treated as one connected ris
- Microsoft Security’s May update points at AI-era control - Microsoft’s May 2026 security roundup signals a continued push toward visibility, control, and protection across expanding cloud, SaaS, and AI-driven envir
- CISA GitHub Leak Shows the Cost of Exposed Build Secrets - A contractor-maintained public repository reportedly exposed privileged AWS GovCloud credentials and CISA internal system details. The known facts are seri
- Storm-2949 shows how identity becomes the cloud perimeter - Microsoft says Storm-2949 used stolen credentials to turn identity compromise into a cloud-wide breach without malware. The lesson is narrow but important:
- Security Changed. Neglected Basics Still Break It - A Dark Reading retrospective shows how cyber models evolved while many breaches still exploit old hygiene gaps.
- AI makes basic SaaS security harder to ignore - Microsoft’s guidance for growing businesses is vendor-led, but the practical point is real: AI tools inherit your identity, access, and data-control mistak
- Copy Fail Patch Alert: Stale Linux Images Still Put Cloud Workloads at Risk - The Linux “Copy Fail” exploit has a patch, but cloud and container estates can keep vulnerable code alive through stale images.
- AI apps are leaking power through bad configuration - Microsoft warns that exposed AI services, weak authentication, and cloud-native defaults are creating practical attack paths without zero-days.
- AWS access portals get regional routing - AWS guidance shows how custom vanity domains can make IAM Identity Center access portals cleaner to route across Regions, with resilience and latency benef
- EU Cloud Breach Probe: IAM Is the Blast Radius - The European Commission cloud breach probe is a reminder that IAM, keys, trust chains, and logs decide cloud incident damage.
- Vercel breach, Mythos bugs, and the security backlog crunch - Risky Business #834 links a Vercel incident, Mythos-found Firefox bugs, and NIST triage limits into one story: identity compromise stays easy, and vulnerability volume keeps rising.