#cloud-security
14 articles
Over the 25 articles published between April 13 and May 7, 2026, cloud-security coverage focused on activity from APT41 and PCPJack, with five key CVEs including CVE-2026-33413 (CVSS 8.8), CVE-2025-29927, CVE-2025-48703, CVE-2025-55182, and CVE-2025-9501. The 16 high, 3 informational, and 2 critical severity reports spanned the technology, government, healthcare, cloud-services, and financial services sectors, with impacts observed globally across the EU, Israel, and North America.
HIGHPCPJack Worm Steals Cloud Credentials, Wipes TeamPCP Infections
SentinelLabs uncovers PCPJack, a credential-stealing worm targeting Docker, Kubernetes, Redis, and MongoDB that actively removes rival TeamPCP access from compromised cloud...
HIGHPersistent OAuth Tokens: The Back Door Attackers Exploit
OAuth tokens with no expiration persist in Google and Microsoft tenants — attackers bypass MFA and perimeter controls.
HIGHAI Agents Wreck Production Databases Due to Poor Access Controls
Dark Reading reports AI agents are deleting production databases because organizations deploy agent integrations without proper security testing or access controls.
HIGHVercel Breach via Context.ai OAuth Token Theft
Vercel disclosed a breach after stolen OAuth tokens from Context.ai enabled unauthorized access to internal systems via a connected app. No customer data exposed.
HIGHESET: Cloud VMs Expose Critical Security Gaps in Enterprise
ESET warns that misconfigured cloud VMs—overprivileged IAM roles, exposed management ports, and unpatched OS images—create systemic security gaps across enterprise environments.
Copperhelm Raises $7M for Agentic Cloud Security Platform
Copperhelm, an Israel-based startup founded by ex-RSA and McAfee engineers, raised $7 million in seed funding for an agentic AI platform that autonomously hunts cloud…
HIGHPalo Alto Networks Zealot AI Agent Autonomously Hacks Cloud Systems
Palo Alto Networks researchers built Zealot, a multi-agent AI penetration testing PoC that autonomously performs reconnaissance, exploitation, and data exfiltration on cloud…
HIGHVercel Breach Exposes Customer Credentials via Compromised AI Tool
Vercel confirms a breach exposing limited customer credentials after attackers compromised an employee's account via a third-party AI tool, Context.ai. The cloud platform is resetting passwords and API tokens for affected users.
HIGHCloud Security Alliance Warns of AI Vulnerability Storm Post-Mythos
The Cloud Security Alliance warns that Anthropic's Claude Mythos model will trigger an 'AI vulnerability storm,' forcing CISOs to manage a 10x surge in code flaws and novel exploit techniques within 18 months.
HIGHVercel Confirms Data Breach After Hackers Attempt to Sell Stolen Information
Vercel disclosed a security breach after threat actors attempted to sell stolen data, including customer account information and internal project details, on a hacking forum. The cloud platform is investigating the scope of the incident.
HIGHUnmanaged Non-Human Identities Fuel Majority of Cloud Breaches
A 2024 analysis reveals 68% of cloud breaches stem from compromised, orphaned non-human identities like service accounts and API keys, not phishing or weak passwords, highlighting a critical gap in automated credential lifecycle management.
HIGHThreat Actors Abuse Google Cloud Storage to Evade Filters, Deliver Remcos RAT
Cybercriminals are hosting phishing pages on Google Cloud Storage to bypass email security and reputation checks, delivering the Remcos remote access trojan in campaigns observed since early 2026.
CRITICALCritical etcd Authentication Bypass Exposes Kubernetes Cluster Secrets
A critical authentication bypass flaw in etcd, CVE-2026-33413 (CVSS 8.8), allows unauthorized access to sensitive cluster APIs, potentially exposing secrets and configurations in Kubernetes and cloud-native environments.
HIGHAPT41 Deploys Stealthy Backdoor to Harvest Cloud Credentials
China-linked threat actor APT41 is deploying a novel, low-detection backdoor against AWS, Google, Azure, and Alibaba Cloud to harvest credentials and establish persistence.
Stay Updated
Get the latest cybersecurity news delivered to your inbox.