Walking around cyber security trade shows, you can’t help but notice how standard pen tester booths are. Pen testers, or penetration testers, simulate an unauthorized attack where they purposely try to infiltrate your network or cloud to uncover security gaps. It’s just like an actual attack made by an ethical hacker you paid for.  Why are such services so in demand? Because the cyber threat landscape exploded in the past few years. Cloud exploitation grew by 95% in 2022 compared to the previous year, and the situation will likely worsen.  Luckily for AWS users, AWS offers GuardDuty to continuously monitor your AWS accounts, detect threats and automate threat response. This article delves deep into the GuardDuty world, exploring its capabilities, use cases, advantages, and potential gaps.  What is AWS GuardDuty? GuardDuty is a real-time threat ...

There is never a dull moment in the world of cyber attackers. From misconfigurations to data misuse, the possibilities are endless for hackers to get into your cloud systems, making threat detection tools indispensable for any company.  Over the past year, 80% of cloud users suffered a severe security incident . As cloud security concerns rise and cyber-attack consequences become more impactful, cloud providers rush to offer their customers increasingly more advanced security scanning tools.    As the leader in the cloud provider space, AWS offers many security solutions to monitor AWS environments and detect threats before they become a corporate nightmare. Two of the most popular security monitoring and scanning tools are GuardDuty and Inspector. This article gives you a round-up of these tools’ features and their benefits and drawbacks. What is AWS ...

The public cloud market is set to hit $1 trillion by 2026. As cloud providers race to grab market share, there are two clear winners: AWS and Microsoft Azure. Both providers are actively rolling out their infrastructure in new regions and expanding their capabilities to meet the growing needs of cloud-native enterprises. One such need is security.  Your data is your most valuable asset, so you and your security teams must ensure your cloud provider is protecting it. This article offers a side-by-side comparison of the most critical security components of AWS and Azure, so you can decide which one works best for your enterprise.   How cloud security works   Both AWS and Azure cloud providers operate according to the shared responsibility model.  There are three main types of shared responsibility models: IaaS- While the customers are ...

Cloud security needs to be continuously improved and refined. "It’s a critical part of your overall organizational security," insists Rob Lee, Chief Curriculum Director for SANS Amazon .    AWS is an easy-to-use, scalable and flexible cloud computing solution. It was launched in 2022 to deliver fast and flexible on-demand infrastructure while helping organizations meet security, identity, and compliance requirements.  But even with Security Hub and other AWS tools, companies are still unprotected from threats and data breaches. In 2022 alone, there were more than 4100 publicly disclosed data breaches, some of which interfered with well-known companies such as Meta, Samsung, and Twitter. Many factors contribute to your cloud security. This article discusses some limitations of AWS cloud security and offers practical steps to improve it.  Who ...