• Blog
  • Cloud Native Security

Cloud Native Security

The GitHub Actions Worm: Compromising GitHub Repositories Through the Actions Dependency Tree

The GitHub Actions Worm: Compromising GitHub Repositories Through the Actions Dependency Tree

Learn how a novel attack vector in GitHub Actions allows attackers to distribute malware across repositories using a technique that exploits the actions dependency tree and puts countless open-source projects and internal repositories at risk. Get an in-depth look at the attack vectors, technical details and a real-world demo in this blog post highlighting our latest research.

As the premier platform for hosting open-source projects, GitHub’s popularity has boosted the popula...

AppSec
CI/CD
DevOps
Research
Sep 14, 2023
By 

Cloud Native Security

Cloud Native Application Protection Platform
Cloud Workload Protection Platform
Cloud Security Posture Management
Cloud Network Security
Cloud Infrastructure Entitlement Management
DevSecOps
Partners
OpenID Connect: Let’s Talk Security
AppSec, DevSecOps
OpenID Connect: Let’s Talk Security
OpenID Connect (OIDC) is a modern authentication and authorization protocol built on top of the 0Auth 2.0 framework. OIDC enables secure and standardized authentication in applications, particularly web and mobile applications.
Sep 12, 2023
By 
GigaOm Names Prisma Cloud a CSPM Leader, Second Consecutive Year
Announcement, CNAPP, Uncategorized
GigaOm Names Prisma Cloud a CSPM Leader, Second Consecutive Year
Moving to the cloud comes with technical complexities — security being one. Addressing the misconfigurations and risks contributes to this complexity,...
Aug 31, 2023
By 
Unpinnable Actions: How Malicious Code Can Sneak into Your GitHub Actions Workflows
CI/CD, DevOps
Unpinnable Actions: How Malicious Code Can Sneak into Your GitHub Actions W...
In today’s post, we look at action pinning, one of the profound mitigations against supply chain attacks in the GitHub Actions ecosystem. It turns out, though, that action pinning...
Aug 30, 2023
By 
New Innovation Insight: CIEM Report from Gartner®
CIEM, Cloud Infrastructure Entitlement Management, IAM
New Innovation Insight: CIEM Report from Gartner®
As the cloud continues to dominate the operating landscape, it has also revolutionized identity and access management, giving rise to new challenges — particularly with the proliferation of identities required...
Aug 23, 2023
By 
LLM in the Cloud — Advantages and Risks
Cloud Security, Code Security, Company & Culture, Points of View
LLM in the Cloud — Advantages and Risks
Let’s explore the relationship between LLMs and cloud security, discussing how these advanced models can be dangerous, as well as leveraged to improve the overall security posture...
Jul 20, 2023
By  and
Top 3 IAM Risks in Your GitHub Organization
DevSecOps, Secure the Cloud
Top 3 IAM Risks in Your GitHub Organization
Identity and access management (IAM) has always been an area of focus for organizations, particularly when it comes to source control management systems (SCM). And rightly so — inadequate identity and access ma...
Jul 18, 2023
By  and
Abusing Repository Webhooks to Access Internal CI/CD Systems at Scale
CI/CD, DevSecOps
Abusing Repository Webhooks to Access Internal CI/CD Systems at Scale
With the increasing adoption of CI/CD systems, organizations tend to adopt a common CI/CD architecture. This architecture combines SaaS-based source control management systems — su...
Jul 13, 2023
By  and
Cloud Compliance: Protecting Your Data and Maintaining Trust
Cloud Security Posture Management, Data Security
Cloud Compliance: Protecting Your Data and Maintaining Trust
Over the last decade, we’ve seen a significant shift in the industry toward cloud computing, as many businesses opt to use cloud-native services. This...
Jul 07, 2023
By 
Mitigate Cloud Breaches With a Holistic Approach to Cloud Identity and Access
CIEM
Mitigate Cloud Breaches With a Holistic Approach to Cloud Identity and Acce...
There’s no hiding from it. Cloud data breaches are on the rise. Threat actors are more prevalent and sophisticated. And the stakes for organizations across all industries remain hi...
Jul 03, 2023
By 
Subdomain Takeover: Detecting and Mitigating with Prisma Cloud
Cloud Security Posture Management
Subdomain Takeover: Detecting and Mitigating with Prisma Cloud
With the adoption of cloud services for hosted content and domain registrations, subdomain takeover exploitations have become a common attack vector i...
Jun 28, 2023
By  and
ChatGPT and Checkov: Fix IaC Security Issues Fast
DevSecOps, Secure the Cloud
ChatGPT and Checkov: Fix IaC Security Issues Fast
Infrastructure as code (IaC) offers a robust method for managing cloud resources. Developers use IaC to describe their infrastructure in code format, which can then undergo versioning, testing and deployment li...
Jun 27, 2023
By 
Interview With John Grosshans, SVP, Chief Revenue Officer, Prisma Cloud
Company & Culture, Culture & Diversity
Interview With John Grosshans, SVP, Chief Revenue Officer, Prisma Cloud
In his role at Palo Alto Networks, John Grosshans is responsible for many things, not least of which is aligning Prisma Cloud solutions to customer ne...
Jun 23, 2023
By 
Abusing Repository Webhooks to Access Internal CI/CD Systems at Scale
CI/CD, DevSecOps
Abusing Repository Webhooks to Access Internal CI/CD Systems at Scale
With the increasing adoption of CI/CD systems, organizations tend to adopt a common CI/CD architecture. This architecture combines SaaS-based source control management systems — su...
Jul 13, 2023
By  and
The Evolution of Cloud-Native Application Security
Application Security, AppSec
The Evolution of Cloud-Native Application Security
Application security refers to the practices and strategies that protect software applications from vulnerabilities, threats and unauthorized access so that organizations can ensure the confidentiality, integri...
Aug 09, 2023
By 
Anomaly Detection Policies for Unusual Workload Credential Usage
CIEM, IAM
Anomaly Detection Policies for Unusual Workload Credential Usage
Cloud computing is an essential component of modern business operations, providing numerous benefits — scalability, flexibility and cost-efficiency among them. But cloud computing...
Aug 03, 2023
By  and
Top 3 IAM Risks in Your GitHub Organization
DevSecOps, Secure the Cloud
Top 3 IAM Risks in Your GitHub Organization
Identity and access management (IAM) has always been an area of focus for organizations, particularly when it comes to source control management systems (SCM). And rightly so — inadequate identity and access ma...
Jul 18, 2023
By  and
Disrupt Attack Paths: How to Prioritize Your Most Harmful Risk
Cloud Native Application Protection Platform, Cloud Security Posture Management
Disrupt Attack Paths: How to Prioritize Your Most Harmful Risk
Among cloud deployments averaging 1000s of configuration violations, security teams are realizing approximately 1% of their issues involve interconnec...
Apr 11, 2023
By 
The Anatomy of an Attack Against a Cloud Supply Pipeline
DevSecOps, Points of View
The Anatomy of an Attack Against a Cloud Supply Pipeline
The most recent Unit 42 Cloud Threat Report contains the high-level results of a red team exercise performed against a SaaS customer’s continuous integration and continuous development (CI/CD) pipeline. In othe...
Oct 11, 2021
By 
Mitigate Cloud Breaches With a Holistic Approach to Cloud Identity and Access
CIEM
Mitigate Cloud Breaches With a Holistic Approach to Cloud Identity and Acce...
There’s no hiding from it. Cloud data breaches are on the rise. Threat actors are more prevalent and sophisticated. And the stakes for organizations across all industries remain hi...
Jul 03, 2023
By 
6 Common Kubernetes and Container Attack Techniques and How to Prevent Them
Cloud Infrastructure Entitlement Management, Cloud Network Security, Cloud Security Posture Management, Cloud Workload Protection Platform, DevSecOps
6 Common Kubernetes and Container Attack Techniques and How to Prevent Them
While Log4J or Log4Shell stole a lot of the headlines, there have been a lot of other atta...
Mar 02, 2022
By 

Subscribe to Cloud Native Security Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

Get the latest news, invites to events, and threat alerts

Popular Resources

Legal Notices

Popular Links