Virtualization

Uncover Cloud Attacks with Trend Vision One and CloudTrail

August 01, 2024

By 2025, Gartner has projected that over half of enterprises’ expenditure on software, infrastructure, business process services, and system infrastructure will be directed toward cloud-based solutions. We have seen this trend in enterprise spending both during and after the pandemic, on top of how fast companies are shifting to the cloud.

PAGES:
1
2

Observability Exposed: Exploring Risks in Cloud-Native Metrics
May 02, 2024
Container Advisor (cAdvisor) is an open-source monitoring tool for containers that is widely used in cloud services. It logs and monitors metrics like network input/output (I/O), disk I/O, and CPU usage. However, misconfigured deployments might inadvertently expose sensitive information, including environment variables such as Prometheus metrics. In this article, we share our findings of the risks we have uncovered and the vulnerable configurations users need to be aware of.
Read more
Mining Through Mountains of Information and Risk: Containers and Exposed Container Registries
October 09, 2023
In this entry, we continue delving into an investigation of exposed registries and look at the types of files and information that malicious actors can access and compromise from these.
Read more
Exposed Container Registries: A Potential Vector for Supply-Chain Attacks
September 26, 2023
In this entry, we will discuss publicly exposed registries, which are repositories or databases containing information accessible to the public without the need for authentication.
Read more
Protecting Your Krew: A Security Analysis of kubectl Plug-ins
November 16, 2021
We looked into the security of kubectl plug-ins in Krew and how supply chains' projects can be at risk.
Read more
Minding the Gaps: The State of Vulnerabilities in Cloud Native Applications
October 08, 2021
Our new report maps the vulnerable cracks in cloud native application security, and shows how this is a growing concern that enterprises should devote time and resources to secure.
Read more
Cybercriminal ‘Cloud of Logs’: The Emerging Underground Business of Selling Access to Stolen Data
November 16, 2020
We take a closer look at an emerging underground market that is driven by malicious actors who sell access to a gargantuan amount of stolen data, frequently advertised in the underground as “cloud of logs."
Read more
Misconfigured AWS S3 Bucket Leaks 36,000 Inmate Records
February 12, 2020
Over 30K records of US inmates were inadvertently exposed through a leaky AWS S3 cloud storage bucket.
Read more
The Path to Secure DevOps Initiatives: Bridging the Gap Between Security and DevOps
August 16, 2019
In a survey commissioned by Trend Micro, majority of the respondents shared their concern for the risks in implementing DevOps. Learn why consulting IT security teams in the initiatives can help bridge gaps between production and security.
Read more
Security by Design: A Checklist for Safeguarding Virtual Machines and Containers
May 22, 2018
Here are some considerations and best practices that developers, IT operations professionals, and system administrators should take into account in securing the infrastructures that power the applications they use.
Read more

PAGES:
1
2

Virtualization

Uncover Cloud Attacks with Trend Vision One and CloudTrail

Observability Exposed: Exploring Risks in Cloud-Native Metrics

Mining Through Mountains of Information and Risk: Containers and Exposed Container Registries

Exposed Container Registries: A Potential Vector for Supply-Chain Attacks

Protecting Your Krew: A Security Analysis of kubectl Plug-ins

Minding the Gaps: The State of Vulnerabilities in Cloud Native Applications

Cybercriminal ‘Cloud of Logs’: The Emerging Underground Business of Selling Access to Stolen Data

Misconfigured AWS S3 Bucket Leaks 36,000 Inmate Records

The Path to Secure DevOps Initiatives: Bridging the Gap Between Security and DevOps

Security by Design: A Checklist for Safeguarding Virtual Machines and Containers

Resources

Support

About Trend

Country Headquarters

Virtualization

Resources

Support

About Trend

Country Headquarters

The Americas

Middle East & Africa

Europe

Asia & Pacific