Following our discovery of a critical loophole in Google Kubernetes Engine (GKE) dubbed Sys:All, we decided to conduct research into the real-world impacts of this issue. Our initial probe already revealed over a thousand vulnerable GKE clusters due to admins configuring RBAC bindings making the system:authenticated group overprivileged, which could potentially allow any Google account […]
Wing Security announced today that it now offers free discovery and a paid tier for automated control over thousands of AI and AI-powered SaaS applications. This will allow companies to better protect their intellectual property (IP) and data against the growing and evolving risks of AI usage. SaaS applications seem to be multiplying by the […]
Nov 02, 2023The Hacker NewsSaaS Security / Software This new product offers SaaS discovery and risk assessment coupled with a free user access review in a unique “freemium” model Securing employees’ SaaS usage is becoming increasingly crucial for most cloud-based organizations. While numerous tools are available to address this need, they often employ different approaches […]
The Budworm APT group is evolving its cyber arsenal. In the latest discovery, Symantec’s Threat Hunter Team identified that Budworm has adapted and upgraded one of its primary tools. Two significant entities, an Asian government and a Middle Eastern telecommunication firm, were targeted with this renewed strategy. Diving into the Details In August 2023, Budworm, […]
Archive discovery re-opens world of sublime musicality NID studio circa 1969 Released next month on The state51 Conspiracy, NID Tapes: Electronic Music in From India 1969-1972 is a throwback to the early days of analogue composition. The compilation escapes the usual tendency towards Eurocentrism in championing this field, showcasing the collective’s experiments with the Moog […]