Cloud Security Wire
AWS Azure GCP RSS
Featured
AWS Misconfiguration critical

AWS IAM Privilege Escalation: PassRole and CreatePolicyVersion Attack Paths

A deep-dive into two of the most dangerous AWS IAM misconfigurations -- iam:PassRole abuse and iam:CreatePolicyVersion -- with exploitation chains, detection opportunities, and remediation guidance.

By Cloud Security Wire · Read analysis →
Coverage
AWS 25
Azure 19
GCP 13
Total 56

Latest Analysis

View all →
AWSAzure Misconfiguration high

Istio Service Mesh Security: mTLS Misconfigurations and Lateral Movement

Istio is widely adopted for zero-trust Kubernetes networking, but misconfigured PeerAuthentication and AuthorizationPolicy resources silently collapse mTLS guarantees. This guide covers the most dangerous misconfigurations, how attackers exploit them, and hardened configurations with policy snippets.

Cloud Security Wire ·
Read →
Hardening Guide high

Azure Entra ID App Registrations as Attacker Backdoors: Attack Paths and Hardening

Threat actors who compromise Azure tenants routinely add credentials to existing service principals or create malicious app registrations with broad API permissions to maintain persistent, stealthy access. This guide covers the attack path, Microsoft Graph API abuse patterns, and the controls that detect and prevent app-based persistence.

Cloud Security Wire ·
Read →
AzureMulti CVE Analysis high

CVE-2026-31431 Copy Fail: Linux Kernel LPE in Kubernetes Clusters

A local privilege escalation in the Linux kernel's AF_ALG socket subsystem lets any unprivileged container process gain root on the node. IBM Cloud Kubernetes Service clusters running 1.32 through 1.35 are affected. Here's what to patch and how to harden before you can.

Editorial Team ·
Read →
Hardening Guide high

GitLab CI/CD Pipeline Security: Credential Theft Vectors and Hardening in 2026

GitLab CI/CD pipelines are an increasingly exploited attack surface. CI_JOB_TOKEN abuse, unprotected pipeline triggers, insecure remote includes, and OIDC misconfigurations can expose cloud credentials, registry tokens, and signing keys. This guide covers the attack paths and how to close them.

Cloud Security Wire ·
Read →
Topics
#Azure#Function Apps#managed identity#privilege escalation#RBAC#IAM#Entra ID#cloud security#serverless#SSRF#LLM security#AI API security#AWS Bedrock#Azure OpenAI#GCP Vertex AI#API key management
Stay informed

Cloud security analysis to your RSS reader.

Subscribe via RSS