Safeguard
Tag

cloud-security

Safeguard articles tagged "cloud-security" — guides, analysis, and best practices for software supply chain and application security.

290 articles

Cloud Security

Cloud Security Posture Management: A No-Nonsense Guide

What CSPM actually does, where it falls short, and how to get real value from posture management instead of drowning in alerts.

Mar 18, 20247 min read
Cloud Security

Multi-Cloud Security Posture Management for Supply Chains

Running workloads across AWS, Azure, and GCP multiplies your attack surface. This guide covers cloud security posture management with a supply chain lens.

Feb 28, 20247 min read
Cloud Security

AWS ECR Image Scanning: A Deep Dive Into What It Catches and What It Misses

ECR offers both basic and enhanced scanning. The difference between them determines whether your container security is real or performative.

Jan 12, 20246 min read
Incident Response

MongoDB Atlas Breach: Customer Metadata Exposed in Corporate Systems Attack

MongoDB disclosed unauthorized access to its corporate systems in December 2023, exposing customer metadata and contact information while Atlas cluster data remained secure.

Nov 15, 20235 min read
Tool Reviews

Wiz Cloud Security Platform: Agentless Done at Scale

An overview of Wiz's cloud security platform, covering its agentless architecture, graph-based risk analysis, and how it changed expectations for cloud security tooling.

Nov 5, 20236 min read
Cloud Security

Cloud-Native Application Protection: Beyond the Buzzword

CNAPP promises unified cloud security. Here is what it actually delivers, where it falls short, and how to evaluate platforms honestly.

Oct 8, 20237 min read
Infrastructure Security

Load Balancer Security Considerations for Modern Architectures

Load balancers terminate TLS, distribute traffic, and make routing decisions. Their security configuration affects every service behind them.

Jul 12, 20236 min read
Code Security

Server-Side Request Forgery (SSRF): The Vulnerability That Unlocks Cloud Metadata

SSRF lets attackers reach internal services through your application. In cloud environments, that often means access to instance metadata and IAM credentials.

Jun 18, 20236 min read
SBOM

SBOMs for Serverless Applications: What Changes and What Doesn't

Serverless doesn't mean dependency-free. Here's how to generate and manage SBOMs for Lambda functions, Azure Functions, and Cloud Functions.

Feb 12, 20236 min read
Application Security

Security Misconfiguration Checklist: The Low-Hanging Fruit Attackers Love

Misconfigurations are the easiest vulnerabilities to find and exploit. Here is a practical checklist for web servers, frameworks, cloud services, and databases.

Sep 8, 20226 min read
Cloud Security

SSRF Exploitation in Cloud Environments

Server-Side Request Forgery is especially dangerous in cloud environments where metadata services expose credentials and configuration. This guide covers SSRF exploitation techniques and defenses specific to AWS, GCP, and Azure.

Sep 5, 20227 min read
Infrastructure Security

Securing Terraform Infrastructure as Code: A Practitioner's Guide

Your Terraform code defines your production infrastructure. If an attacker compromises your HCL files, state files, or provider plugins, they do not just get access — they get the keys to rebuild your entire environment on their terms.

Jun 18, 20228 min read
cloud-security (Page 24) — Safeguard Blog