🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Just in time for fwd:cloudsec Europe, Stratus Red Team now supports 6 Microsoft Entra ID (Azure AD) attack techniques!🌩️ 😈 stratus-red-team.cloud/attack-techniq… brought to you by my awesome colleague Katie Knowles and yours truly!

Oof, AWS had a bug that allowed Transit Gateway peering requests to be accepted by the requestor, so an attacker could accept their own requests and peer to any gateway. The prevention logic for this was only in the web console UI, not the API. 😞 engineering.doit.com/aws-transit-ga…

We're incredibly excited that fwd:cloudsec Europe is happening tomorrow, in Brussels. All the talks will be livestreamed on YouTube starting from 9 a.m. CEST at youtube.com/live/oD-d9B71y…, don't miss it! Schedule: fwdcloudsec.org/conference/eur…

🦎 It's up! Using Entra ID AUs for sticky accounts and hidden permissions: securitylabs.datadoghq.com/articles/abusi…

I’ve had this research from Katie Knowles bookmarked for a thorough read through. Excellent technical dive into abusing AU’s in #EntraID, and appreciate the balance of the article in highlighting the benefits of AU’s and their power for good at the same time 1/x #Entra #infosec

The recordings for fwd:cloudsec Europe talks are now on YouTube! youtube.com/playlist?list=…

Today we’re happy to announce that heal.dev is moving to private Beta. At heal, we’re building an AI-powered software testing tool that lets you automate end-to-end tests from natural language prompts. Here's our demo! youtube.com/watch?v=tjMoJh…

Interesting update to the quarantine policy. 👀

Stratus Red Team now supports an Amazon Bedrock attack technique to simulate LLMjacking, thanks to a contribution from Alessandro Brucato! stratus-red-team.cloud/attack-techniq…

Excited to share some research I've been working on for the past few months, based on real-world data from thousands of environments using AWS, Azure and Google Cloud! datadoghq.com/state-of-cloud…

Fresh from the oven 📷 Analysis of NPM malicious packages connected to contagious interview campaign. securitylabs.datadoghq.com/articles/tenac…

Our team created a K8s sidecar container to support cross-cloud access in a multi-cloud environment. It simplifies access to AWS, Azure, and Google Cloud resources w/o needing config changes to apps. Join us on Nov 5 for DD On Cloud Workload Identities: dtdg.co/ddon1124-twitt…

Fun with Google Cloud's default service accounts (and how to leverage them for offensive purposes) securitylabs.datadoghq.com/articles/googl…

I’m very excited for this to be released! RCPs cover a need to restrict external access to resources across your organization. Plus its a whole new policy type to consider! buff.ly/4fpQpx2

Back in 2022 I started a project I called vpcshark. Since then, AWS has launched three generations of EC2 instances without traffic mirroring support. So I figured I might as well open source it, might be useful to someone. github.com/aidansteele/vp…

Yearlong supply-chain attack targeting security pros steals 390K credentials arstechnica.com/security/2024/…