The Inner Circle

Weekly Cloud and Security Watch Newsletter - July 12th, 2020

  • 1.  Weekly Cloud and Security Watch Newsletter - July 12th, 2020

    Posted 20 days ago
    Edited by Olivier Caleff 17 days ago

    Weekly Cloud and Security Watch Newsletter - July 6th to 12th, 2020

    Full newsletter with links ⇒ CloudSecurityAlliance.fr/go/K7C/
    ________________________________________

    1 - CSA News and Updates - July 6th to 12th, 2020

    • Blog: FTC Guidance - Six Steps Toward More Secure Cloud Computing
    • Blog: Cryptocurrencies, Digital assets, Tokens and Blockchain maturity is coming soon
    • Publication: The Six Pillars of DevSecOps: Automation
    • 'CSA CloudCon 2020' Agenda
    • Blog: Night of the Living Cloud (aka CSA Federal Summit) (1/2)
    • Peer Review: 'Key Management when using Cloud Services' document

    2 - Cloud and Security News Watch (over 90 links)

    • Alerts
      • AWS-2020-002: Container Networking Security Issue (CVE-2020-8558)
    • Attacks
      • APT aim at Office 365, Zoom-based, and OAuth-based phishing
      • Court Order to Prevent Further O365 Attacks
      • Outdated Cloud DNS records
    • Reports and Surveys
      • "The State Of Cloud Security 2020" (Sophos)
      • "2020 UK Veritas Databerg Report"
      • "2020 State of SecOps and Automation Report" (Sumo Logic)
    • Acquisitions
      • Rancher by SUSE
    • Miscellaneous
      • Additional Cloud and Security Weekly Watch: 'TL;DR Security' and 'The Cloud Security Reading List
      • Workloads Security Strategies: Intezer and Checkpoint
      • AWS: Architecture, Reduce Cloud Security Misconfigurations with AWS, Common Errors and Mitigation, AWS Secrets Manager usage, and Core Security Essentails
      • Azure: use Cases for ATP, and for Sentinel, Governance
      • GCP: Chinese Isolated Region Initiative stopped
      • Kubernetes: Best practices for alerting
      • Tools: FRETA (Linux forensics), Permission Manager for Kubernetes

    3 - Agenda

    • July 2020
      • 15th → 'CSA Federal Summit 2020' : "Update on FedRAMP"
      • 22nd → 'CSA Federal Summit 2020' : "The Resurgence of Cloud"
      • 29th → 'CSA Federal Summit 2020' : "Security Automation Simplified with Open Security Controls Assessment Language"
    • Deadlines for the CSA call for comments in July
      • 13th → "Enterprise Architecture Working Group Charter"
      • 17th → "Critical Controls Implementation for SAP, Part 2"
      • 19th → "Top Threats to Cloud Computing: Egregious Eleven Deep Dive"
      • 19th → "Earning Trust in the 21st Century"
      • 28th → "Cloud OS Security Specification v2.0"
    • August 2020
      • 19th / 20th → 'CSA CloudCon 2020' • Grand Rapids, Michigan
      • 31st → Deadline for the CSA call for proposal for the CSA EMEA 2020 Congress
      • 31st and next → CCSK / CCSK Plus training in French
    • Deadline for the CSA call for comments in August
      • 9th → "Key Management when using Cloud Services"

    4 - Direct Link

    CloudSecurityAlliance.fr/go/K7C/
    ________________________________________

    ________________________________________
    #Watch #Newsletter
    ________________________________________

    ------------------------------
    Olivier Caleff - CSA French Chapter - Chapter Leader - olivier.caleff@cloudsecurityalliance.fr - https://CloudSecurityAlliance.fr
    ------------------------------