The top 10 cloud security fails and how to avoid them: usd AG gives presentation at CloudLand 2023

5. April 2023

From June 20 until June 23, 2023, the second edition of the German-speaking "CloudLand“ festival of the German-speaking Cloud Native Community (DCNC) (in german) will take place at Phantasialand, and is actively designed by international community experts. The community festival will focus on container & cloud technologies, microservices & domain-driven design, DevOps & methodology and CI/CD & automation.

Dr. Kai Schubert, Managing Security Consultant at usd AG, and Phillip Ansorge, Senior Security Consultant at usd AG, have been conducting cloud security audits for years and will be on stage on June 21 as part of their expert talk "The Top 10 Cloud Security Fails and How to Avoid Them."

In the expert talk, they will share and discuss their experiences and best practices on cloud services configurations. What are the most common and important configuration errors on AWS, Azure and GCP? How can they be avoided? They provide practical tips and insights into their approach along with tools. After all, with this knowledge, vulnerabilities can be avoided and thus the next audit will bring fewer findings.

Dr. Kai Schubert is happy about the acceptance of the lecture: "The festival is a great opportunity for us to point out a still underestimated topic in front of a large professional audience as well as to raise more awareness for security in the Cloud"

Also interesting:

DORA Countdown: One Month Left Until the Deadline

DORA Countdown: One Month Left Until the Deadline

DORA, the Digital Operational Resilience Act, will fully apply as of 17 January 2025. We have summarized everything you need to know about the EU regulation, preparation and best practices from our news blog.

Sunset of PCI DSS v4.0 on 31 December 2024: Get Ready!

Sunset of PCI DSS v4.0 on 31 December 2024: Get Ready!

PCI DSS v4.0: In March 2024, version 4.0 of the Payment Card Industry Data Security Standard became mandatory after a two-year transition phase. Just a few months later, version 4.0.1 was released as a minor update of the standard, which will become mandatory on...

Top 3 Vulnerabilities in SSO Pentests

Top 3 Vulnerabilities in SSO Pentests

During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose significant risks to corporate security. They increasingly encounter the same vulnerabilities. Our blog series "Top 3 Vulnerabilities" presents...

Categories

Categories