cloud_sec | Unsorted

Telegram-канал cloud_sec - CloudSec Wine

2225

All about cloud security Contacts: @AMark0f @dvyakimov About DevSecOps: @sec_devops

Subscribe to a channel

CloudSec Wine

🤖 Using threat modeling and prompt injection to audit Comet

Trail of Bits used ML-centered threat modeling and adversarial testing to identify four prompt injection techniques that could exploit Perplexity's Comet browser AI assistant to exfiltrate private Gmail data. The audit demonstrated how fake security mechanisms, system instructions, and user requests could manipulate the AI agent into accessing and transmitting sensitive user information.

https://blog.trailofbits.com/2026/02/20/using-threat-modeling-and-prompt-injection-to-audit-comet/

#AI

Читать полностью…

CloudSec Wine

🔶 AWS Incident Response: IAM Containment That Survives Eventual Consistency

Standard AWS IR containment fails against attackers exploiting IAM eventual consistency. This article presents an SCP-enforced technique that makes identity-level containment attacker-resistant.

https://www.offensai.com/blog/eventual-consistency-resistant-iam-containment-aws-incident-response

(Use VPN to open from Russia)

#aws

Читать полностью…

CloudSec Wine

🤖 MCP Server Security: The Hidden AI Attack Surface

MCP servers connecting AI assistants to external tools create significant attack surfaces enabling arbitrary code execution, data exfiltration, and social engineering. Both local and remote MCP servers can be exploited through server chaining, supply chain attacks, and malicious tool implementations.

https://www.praetorian.com/blog/mcp-server-security-the-hidden-ai-attack-surface/

#AI

Читать полностью…

CloudSec Wine

🤖 3 Principles for Designing Agent Skills

Block Engineering discusses designing agent skills using three principles: make deterministic outputs script-based, let agents handle interpretation and conversation, and write explicit constitutional constraints. Skills codify tribal knowledge into executable documentation for AI agents across their organization.

https://engineering.block.xyz/blog/3-principles-for-designing-agent-skills

#AI

Читать полностью…

CloudSec Wine

🏗 Encrypting Files with Passkeys and age

A post explaining how to encrypt files with passkeys, using the WebAuthn prf extension and the TypeScript age implementation.

https://words.filippo.io/passkey-encryption

#build

Читать полностью…

CloudSec Wine

🔐 Standardizing Privileged Access Architecture for Multi-Cloud

This white paper examines the risks and attack vectors inherent in hybrid multi-cloud infrastructures, and analyzes various attack paths observed by Mandiant in real-world multi-cloud scenarios.

#iam

Читать полностью…

CloudSec Wine

🤖 From Automation to Infection: How OpenClaw AI Agent Skills Are Being Weaponized

The fastest-growing personal AI agent ecosystem just became a new delivery channel for malware. Over the last few days, VirusTotal has detected hundreds of OpenClaw skills that are actively malicious.

https://blog.virustotal.com/2026/02/from-automation-to-infection-how.html

#AI

Читать полностью…

CloudSec Wine

🔐 Blog: A Beginners Guide: Cross-Device Passkeys

Find out more about how passkeys can be used across devices using a mechanism called Hybrid transport.

https://bughunters.google.com/blog/passkeys

#iam

Читать полностью…

CloudSec Wine

👩‍💻 Weaponizing Whitelists: An Azure Blob Storage Mythic C2 Profile

Mature enterprises lock down egress but often carve out broad exceptions for trusted cloud services. This post shows how reviewing deployment guides can help identify those exceptions and weaponize them with a new Mythic C2 profile called azureBlob.

https://specterops.io/blog/2026/01/30/weaponizing-whitelists-an-azure-blob-storage-mythic-c2-profile/

#azure

Читать полностью…

CloudSec Wine

⚙️ Stealing Salesforce OAuth Tokens using the WAF

This post details a method for stealing Salesforce OAuth tokens by exploiting an XSS vulnerability and leveraging the Cloudflare Web Application Firewall (WAF).

https://castilho.sh/salesforce-oauth-ato

#saas

Читать полностью…

CloudSec Wine

⚙️ Kube-Policies BinauthZ: Closing the Supply Chain Gap in Kubernetes

Block's BinauthZ plugin extends their OPA-based admission controller to cryptographically verify container image signatures and attestations at Kubernetes admission time, enforcing SLSA using Sigstore/cosign with AWS KMS.

https://engineering.block.xyz/blog/kube-policies-binauthz-closing-the-supply-chain-gap-in-kubernetes

#kubernetes

Читать полностью…

CloudSec Wine

Running Renovate as a GitHub Action (and NO PAT!)

A post explaining how you can run Renovate as a GitHub Action without needing a GitHub Personal Access Token by using Octo STS.

https://www.chainguard.dev/unchained/running-renovate-as-a-github-action

#cicd

Читать полностью…

CloudSec Wine

👩‍💻 Linking Privileged Accounts to Identities in Microsoft Defender: Benefits & Use Cases

Microsoft Defender for Identity now allows linking multiple accounts to a single identity, by correlating accounts from different identity providers or linking distinct user accounts, crucial for incident response and remediation.

https://www.cloud-architekt.net/linking-privileged-accounts-in-defender/

#azure

Читать полностью…

CloudSec Wine

⚙️ Kubernetes v1.35: A Better Way to Pass Service Account Tokens to CSI Drivers

Kubernetes 1.35 introduces beta support for CSI drivers to receive service account tokens via the "secrets" field instead of "volume_context", preventing accidental token logging.

https://kubernetes.io/blog/2026/01/07/kubernetes-v1-35-csi-sa-tokens-secrets-field-beta/

#kubernetes

Читать полностью…

CloudSec Wine

A Brief Deep-Dive into Attacking and Defending Kubernetes

This article covers Kubernetes attack and defense techniques. Explores Kubernetes components (API Server, ETCD, kubelet), attack vectors including unauthenticated API access, RBAC misconfigurations, ServiceAccount token abuse, malicious admission controllers, CoreDNS poisoning, writable volume mounts, ETCD compromise, and certificate authority exploitation.

https://heilancoos.github.io/research/2025/12/16/kubernetes.html

#kubernetes

Читать полностью…

CloudSec Wine

🔴 Google API Keys Weren't Secrets. But then Gemini Changed the Rules

Enabling the Gemini API on a GCP project silently grants existing public AIza... keys (e.g., Maps/Firebase) access to sensitive Gemini endpoints. Truffle Security found 2,863 such exposed keys via Common Crawl, enabling data access, billing abuse, and quota exhaustion, including against Google's own infrastructure.

https://trufflesecurity.com/blog/google-api-keys-werent-secrets-but-then-gemini-changed-the-rules

#gcp

Читать полностью…

CloudSec Wine

🤖 caterpillar

Caterpillar is a security scanning library for AI agent skill files (e.g., Claude Code skills) for dangerous or malicious behavior.

https://github.com/alice-dot-io/caterpillar

#AI

Читать полностью…

CloudSec Wine

🔶🤖 Building an AI-powered defense-in-depth security architecture for serverless microservices

This AWS blog demonstrates implementing a seven-layer AI-powered defense-in-depth security architecture for serverless microservices using AWS Shield, WAF, Cognito, API Gateway, VPC, Lambda, Secrets Manager, and DynamoDB, enhanced with GuardDuty and Amazon Bedrock for intelligent threat detection and automated response.

https://aws.amazon.com/ru/blogs/security/building-an-ai-powered-defense-in-depth-security-architecture-for-serverless-microservices/

(Use VPN to open from Russia)

#aws #AI

Читать полностью…

CloudSec Wine

🤖 augustus

LLM security testing framework for detecting prompt injection, jailbreaks, and adversarial attacks. See also the companion blog post.

https://github.com/praetorian-inc/augustus

#AI

Читать полностью…

CloudSec Wine

🤖 Manipulating AI memory for profit: The rise of AI Recommendation Poisoning

That helpful “Summarize with AI” button? It might be secretly manipulating what your AI recommends. Microsoft security researchers have discovered a growing trend of AI memory poisoning attacks used for promotional purposes, a technique they called "AI Recommendation Poisoning".

https://www.microsoft.com/en-us/security/blog/2026/02/10/ai-recommendation-poisoning/

#AI

Читать полностью…

CloudSec Wine

🤖 Threat modeling agentic AI: a scenario-driven approach

A practical workflow for threat modeling agentic AI systems: use a five-zone navigation lens to trace attack paths, formalize them as attack trees, and map to OWASP's threat taxonomy and playbooks.

https://christian-schneider.net/blog/threat-modeling-agentic-ai/

#AI

Читать полностью…

CloudSec Wine

👀 Building Slack’s Anomaly Event Response

This article introduces Slack's Anomaly Event Response (AER), an automated security system that detects suspicious activities and terminates user sessions in real-time, reducing detection-to-response gaps from hours to minutes.

https://slack.engineering/building-slacks-anomaly-event-response/

#monitor

Читать полностью…

CloudSec Wine

🔴 Google Looker RCE vulnerabilities: Patch now

Tenable Research discovered two novel vulnerabilities in Google Looker that could allow an attacker to completely compromise a Looker instance.

https://www.tenable.com/blog/google-looker-vulnerabilities-rce-internal-access-lookout

#gcp

Читать полностью…

CloudSec Wine

🤖 AI-Assisted Development at Block

Block's AI engineering approach includes: 95% of engineers using AI assistants, providing freedom to explore multiple tools, launching an AI Champions program focused on repo readiness and context engineering, implementing automated PRs, and planning team-based workshops for multi-agent workflows.

https://engineering.block.xyz/blog/ai-assisted-development-at-block

#AI

Читать полностью…

CloudSec Wine

We should all be using dependency cooldowns

Dependency cooldowns delay automatic dependency updates, providing a free and effective mitigation against most open source supply chain attacks. Tools like Dependabot and Renovate support configurable cooldown periods before adopting new dependency versions.

https://blog.yossarian.net/2025/11/21/We-should-all-be-using-dependency-cooldowns

(Use VPN to open from Russia)

#cicd

Читать полностью…

CloudSec Wine

⚙️ Kubernetes Remote Code Execution Via Nodes/Proxy GET Permission

An authorization bypass in Kubernetes RBAC allows for nodes/proxy GET permissions to execute commands in any Pod in the cluster.

https://grahamhelton.com/blog/nodes-proxy-rce

(Use VPN to open from Russia)

#kubernetes

Читать полностью…

CloudSec Wine

👩‍💻 A new era of agents, a new era of posture

Microsoft Defender introduces AI Security Posture Management for multi-cloud environments, providing visibility and contextual risk assessment across AI agent architectures. It identifies agents connected to sensitive data, susceptible to indirect prompt injection attacks, and operating as coordinators, while offering attack path analysis and actionable hardening recommendations.

https://www.microsoft.com/en-us/security/blog/2026/01/21/new-era-of-agents-new-era-of-posture/

#azure

Читать полностью…

CloudSec Wine

🔶 CodeBreach: Infiltrating the AWS Console Supply Chain and Hijacking AWS GitHub Repositories via CodeBuild

Wiz Research discovered a critical supply chain vulnerability that abused a CodeBuild misconfiguration to take over key AWS GitHub repositories, including the JavaScript SDK powering the AWS Console.

https://www.wiz.io/blog/wiz-research-codebreach-vulnerability-aws-codebuild

#aws

Читать полностью…

CloudSec Wine

Kubernetes v1.35: Restricting executables invoked by kubeconfigs via exec plugin allowList added to kuberc

Kubernetes v1.35 introduces beta support for restricting credential plugin executables via kuberc configuration. Users can set "credentialPluginPolicy" to AllowAll, DenyAll, or Allowlist, with an optional "credentialPluginAllowlist" to specify permitted binaries, enhancing security against supply-chain attacks.

https://kubernetes.io/blog/2026/01/09/kubernetes-v1-35-kuberc-credential-plugin-allowlist/

#kubernetes

Читать полностью…

CloudSec Wine

🔶 Unauthenticated Cluster Takeover in AWS ROSA

A critical vulnerability in AWS ROSA Classic allowed unauthenticated attackers to discover clusters via Certificate Transparency logs, extract cluster UUIDs and owner emails from unauthenticated endpoints, initiate unauthorized cluster transfers, and escalate to AWS account access through ROSA's IAM roles.

https://blog.ryanjarv.sh/2026/01/05/unauth-aws-rosa-cluster-takeover.html

(Use VPN to open from Russia)

#aws

Читать полностью…
Subscribe to a channel