Google’s new Shielded VMs help enterprises protect their Google Cloud workloads from attacks against the hardware and firmware.
A particularly vexing challenge in authentication is finding cases where credentials have been compromised or when login attempts are not legitimate. Netflix has open-sourced an internal tool called Trailblazer that uses AWS CloudTrail to help tackle this challenge in a scalable way.
Security veteran Chenxi Wang's new venture capital fund Rain Capital plans to focus on cloud-native security services and products. Rain Capital will also seek out female and minority founders solving challenging security problems.
FireEye has released PwnAuth, an open source tool designed to help security professionals test their organization's ability to detect and respond to attacks abusing OAuth.
Amazon S3 buckets aren't the only data repositories that can leak data because of the organization's configuration errors. Other cloud services on the AWS platform are often found accessible by anyone on the Internet.