Permiso 2022 - End of Year Observations
The Permiso p0 labs team provides an overview of what they have observed from the front lines of cloud attacks over 2022, and where they expect cloud attacks to head next!
Cloud vendor supply chain risk - Forecast: Foggy with a chance of thunderstorms
Attackers are increasingly taking advantage of trusted vendor relationships to perform software and service based supply chain attacks. As cloud adoption continues to grow, we will see sophisticated threat actors like APT29 increase targeting of cloud vendors.
Permiso weighs in on CrowdStrike's LemonDuck malware finding
On April 22, Permiso provided their perspective of CrowdStrike’s recent publication on LemonDuck malware shifting targeting to container and cloud technologies in the CSO Online article “Cryptomining botnet targeting Docker on Linux systems”.