Cloud Security This Week - September 28, 2018 - Lacework

Cloud Security This Week – September 28, 2018

Lacework Editorial

September 28, 2018

 
New from Lacework
Cybersecurity in the News…Again…And Again
A roundup of three major cybersecurity breaches. This is becoming common, and not just for people who live the world of cybersecurity. It’s a harbinger of our connected world, and one that keeps delivering headlines.
 
Secure Your AWS Cloud with Lacework
Webcast replay that explains how to:
  1. Assess your AWS configuration for compliance and security best practices
  2. Ensure the protection of AWS accounts and S3 buckets
  3. Continuously monitor your workloads
10 Reasons VPC Flow Logs Won’t Keep Your Cloud Secure
From inability to scale, to creation of false positives, and limits on file integrity monitoring, here are ten reasons why VPC flow logs just won’t keep your cloud secure.
 
This is How to Optimize CloudTrail to Improve the Security of Your AWS Environment
Because clouds are dynamic and operate at a blindingly fast pace you need as much insight as you can get in order to recognize where threats are, what they are, and to get some context about how they can hurt you. Once you do that, you’re on your way to knowing what’s known and having an idea that you might not know what you don’t know. 
 
News and Perspectives on Cloud Security
Microsoft’s Brad Smith: Tech Companies are “First Line of Defense” in Cybersecurity
Cybersecurity is “job one” for businesses, consumers and governments around the world today, and technology companies are “the first line of defense,” according to Microsoft president Brad Smith.
 
Hacker Gets 14 Years in Prison for Running Scan4You Service
A 37-year-old man from Latvia was sentenced to 14 years in prison for facilitating cybercrime by creating and running a service named Scan4You that allowed malware authors to check the detection rates of their malicious code. Scan4You is what security researchers and malware authors refer to as a “counter-anti-virus” or a “no-distribute-scanner.”
 
Thousands of Canadians’ Personal Data From NCIX Servers Listed on Craigslist
It is being reported that data potentially belonging to thousands of Canadians allegedly made its way onto buy-and-sell website Craigslist. The information was contained on servers and hard drives formerly owned by Vancouver-based computer retailer NCIX.
 
Port of San Diego Suffers Cyber-Attack, Second Port in a Week After Barcelona
Two major international ports fell victim to cyber-attacks within the span of a week, putting the shipping industry on alert for a possible threat actor targeting the entire sector.