Atlassian Vulnerabilities Highlight Criticality of Cloud Services

Two flaws in the popular developer cloud platform show how weaknesses in authorization functions and SaaS flaws can put cloud apps at risk. [TechWeb]( Follow Dark Reading: [RSS]( October 25, 2022 LATEST SECURITY NEWS & COMMENTARY [Atlassian Vulnerabilities Highlight Criticality of Cloud Services]( Two flaws in the popular developer cloud platform show how weaknesses in authorization functions and SaaS flaws can put cloud apps at risk. [Stress Is Driving Cybersecurity Professionals to Rethink Roles]( Burnout has led one-third of cybersecurity staffers to consider changing jobs over the next two years, potentially further deepening the talent shortage, research shows. [Ransomware Barrage Aimed at US Healthcare Sector, Feds Warn]( A CISA advisory warns that the Daixin Team ransomware group has put the US healthcare system in its crosshairs for data extortion, and provides tools to fight back. [Cybersecurity's Role in Combating Midterm Election Disinformation]( A multilayered attack technique that took center stage in 2020 and has only grown more endemic. [(Sponsored Article) Security Testing Improves Headaches & Compliance]( Compliance activities are often viewed as frustrating but necessary. That's an understandable view as teams often have to apply a set standard to existing systems and figure out how to collect enough evidence to answer an audit. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Microsoft Data-Exposure Incident Highlights Risk of Cloud Storage Misconfiguration]( Many enterprises continue to leave cloud storage buckets exposed despite widely available documentation on how to properly secure them. [Iron Man Started His Journey From Scratch & Your Security Awareness Program Can Too]( Build your company's security awareness program a suit of high-tech cybersecurity armor along with a collaborative atmosphere. [Name That Toon: Witching Hour]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. [MORE]( EDITORS' CHOICE [List of Common Passwords Accounts for Nearly All Cyberattacks]( Half of a million passwords from the RockYou2021 list account for 99.997% of all credential attacks against a variety of honeypots, suggesting attackers are just taking the easy road. LATEST FROM THE EDGE [Embracing the Next Generation of Business Developers]( Security teams that embrace low-code/no-code can change the security mindset of business users. LATEST FROM DR TECHNOLOGY [IoT Fingerprinting Helps Authenticate and Secure All Those Devices]( For organizations struggling to protect a rapidly expanding volume of IoT devices, IoT fingerprinting could help with security and management. WEBINARS - [Building & Maintaining an Effective Incident Readiness and Response Plan]( The cyber attackers hit their mark: now what do you do? Whom do you call first? Do you have a plan to contain the damage, eliminate the threat, avoid destruction of forensic evidence, and keep the business The attackers have ... - [Cybersecurity Outlook 2023]( On December 13, Cybersecurity Outlook 2023 will look at some of the new threats posed by cybercriminals and nation-states, as well as evolving products and technologies that may help mitigate those threats. You'll hear from some of the cybersecurity industry's leading experts, ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [Ransomware Resilience and Response: The Next-Generation]( - [5 Takeaways from Major Cybersecurity Headlines]( - [Why Legacy Point Tools Are Failing in Today's Environment]( - [SANS 2022 Cloud Security Survey]( - [BotGuard for Applications Higher Education Case Study]( - [Achieve Balanced Security and Performance with Next-Generation Software-Defined WAN]( - [Top Four Steps to Reduce Ransomware Risk]( [View More White Papers >>]( FEATURED REPORTS - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( - [Breaches Prompt Changes to Enterprise IR Plans and Processes]( - [6 Elements of a Solid IoT Security Strategy]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Godspeed Capital-Backed SilverEdge Partners with Counter Threat Solutions]( [Uptycs Introduces Detections that Correlate Threat Activity from the Kubernetes Control Plane and Container Runtime]( [Hornetsecurity Launches Next-Generation Security Awareness Training to Help Organizations Strengthen Their Human Firewall]( [Nok Nok, a Global Leader in Customer Passwordless Authentication, Releases Full Support for Passkeys]( [Scribe Security Launches Evidence-Based Security Trust Hub]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [Emerging Cyber Vulnerabilities That Every Enterprise Should Know About]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2022]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)