Jason Chavarría
Our CLI is an approved AST tool to secure cloud apps
Fluid Attacks' automated tool is recommended by the App Defense Alliance for static scanning under the Cloud Application Security Assessment (CASA) framework.
Jason Chavarría
Continuous manual security tests for going beyond MCSB
The Microsoft cloud security benchmark recommends regular red teaming and pentesting. We talk about how we help you go beyond that and achieve Azure DevSecOps.
Jason Chavarría
Trends in cyberattacks and prevention this year
In this post, Fluid Attacks shares a digest of trends in cyberattacks and prevention in 2022.
Jason Chavarría
Continuous manual security tests for AWS CAF compliance
AWS has sketched the way to achieve DevSecOps and provided its Cloud Adoption Framework. In it, it advises pen testing and red teaming, two things we excel at.
Jason Chavarría
Benefits of shifting cloud security left
This post defines cloud DevSecOps, presents the key issues it helps tackle and gives you a condensed list of its benefits.
Jason Chavarría
What was Azure's four-year-old vulnerability?
A recently discovered four-year-old vulnerability in Microsoft's Azure App Service has been keeping the source codes of customer applications public.
Jason Chavarría
Insider attack suspect was arrested this month
An individual was arrested for extorting Ubiquiti, the company where he worked as a developer. In this post, we narrate the key points of his attack.
Felipe Zárate
Tips for understanding the Apple–China controversy
In this post, we will understand why the Apple data center inaugurated in Guizhou reopened the controversy over data privacy in China.
Felipe Ruiz
Confusion with the cloud shared responsibility model
Do you know what is happening with those who don't understand the cloud security shared responsibility model? Find out here and get some recommendations.
