Cloud Security

Executive Summary The unstable release, as its name implies, is an OS distro release where active development takes place. Unsurprisingly, it is also the most volatile release version. It often...

When you’re developing a cloud-native web application, it can feel as if you’re building a kingdom. The success of your application and company depends on a strong and scalable...

In the latest edition of the Unit 42 Cloud Threat Report, our researchers explore the cloud threat landscape with a deep focus on identity and access management (IAM) misconfiguration...

“Resistance to change is proportional to how much the future might be altered by any given act.” — Stephen King Humans are naturally resistant to change. The fear of the...

We recently announced the largest release for Prisma Cloud to date, creating the industry’s only comprehensive Cloud Native Security Platform (CNSP).  But what does it mean to say Prisma Cloud...

As vulnerabilities in open-source code continue to play a prominent role in headline-grabbing exploits, such as Heartbleed and Log4Shell, a hidden source of open-source risk flies under the radar...

In this cloud-native world, applications are more assembled than built. Instead of starting from scratch, developers leverage ready-made code components that were previously built and open sourced by others....

The Open Web Application Security Project (OWASP) is a nonprofit foundation dedicated to promoting best practices, methodologies, and tools for developing secure and reliable applications. In early 2003, they...

Container-based application deployment is at its peak, as is the popularity of orchestration platforms like Kubernetes that form the underlying infrastructure for containerized applications. Because of its ability to...

Recent attacks like those on Colonial Pipeline, SolarWinds, and Twitch have gained notoriety and foregrounded the importance of security within cloud infrastructure. Unfortunately, the complexity of cloud infrastructure, as...