%term

Scale compliance across global frameworks with Datadog Cloud Security

Jan 20, 2026 By Christina DePinto In Datadog

Security organizations are expected to keep pace with a growing set of regulatory and industry requirements as their cloud environments grow. Yet maintaining compliance in modern, fast-moving infrastructure is increasingly difficult. Cloud resources change by the minute, teams adopt new services without centralized oversight, and evidence needed for audits is often scattered across tools and providers.

Read Post

Datadog

Read more about Scale compliance across global frameworks with Datadog Cloud Security

Software Supply Chain Risk: AWS CodeBreach Breakdown

Jan 20, 2026 By Indusface In Indusface

A misconfiguration in AWS CodeBuild, dubbed CodeBreach, could have allowed attackers to trigger privileged builds, expose GitHub credentials, and compromise core repositories, highlighting a massive supply chain risk in CI/CD pipelines.

View Video

Indusface

Read more about Software Supply Chain Risk: AWS CodeBreach Breakdown

How we mitigated a vulnerability in Cloudflare's ACME validation logic

Jan 19, 2026 By Hrushikesh Deshpande In Cloudflare

On October 13, 2025, security researchers from FearsOff identified and reported a vulnerability in Cloudflare's ACME (Automatic Certificate Management Environment) validation logic that disabled some of the WAF features on specific ACME-related paths. The vulnerability was reported and validated through Cloudflare’s bug bounty program. The vulnerability was rooted in how our edge network processed requests destined for the ACME HTTP-01 challenge path (/.well-known/acme-challenge/*).

Read Post

Cloudflare

Read more about How we mitigated a vulnerability in Cloudflare's ACME validation logic

The Deep Dive | Mastering Apple Modern Management on JumpCloud 01.16.2025

Jan 17, 2026 By JumpCloud In JumpCloud

Don’t get blindsided by Apple’s latest updates. Learn how you can fully utilize Apple’s latest Declarative Device Management (DDM) and other modern protocols on the JumpCloud platform.

View Video

JumpCloud

Read more about The Deep Dive | Mastering Apple Modern Management on JumpCloud 01.16.2025

Astro is joining Cloudflare

Jan 16, 2026 By Fred Schott In Cloudflare

The Astro Technology Company, creators of the Astro web framework, is joining Cloudflare. Astro is the web framework for building fast, content-driven websites. Over the past few years, we’ve seen an incredibly diverse range of developers and companies use Astro to build for the web. This ranges from established brands like Porsche and IKEA, to fast-growing AI companies like Opencode and OpenAI.

Read Post

Cloudflare

Read more about Astro is joining Cloudflare

Configuration Drift: Why 99% of Cloud Failures Are Customer-Caused

Jan 16, 2026 By Reach Security In Reach Security

"Gartner estimates that 99% of cloud security failures through 2025 will be the customer's fault, primarily due to misconfigurations." Don’t become part of the statistic. Take our configuration drift product tour for a spin. Consider it some light work before the weekend. Most breaches don’t stem from cloud provider failures, but from customer-side issues like misconfigurations, weak identity controls, and unmanaged change.

View Video

Reach Security

Read more about Configuration Drift: Why 99% of Cloud Failures Are Customer-Caused

CodeBreach: Critical AWS CodeBuild Misconfiguration Enabling Supply Chain Repository Takeover

Jan 16, 2026 By Aayush Vishnoi In Indusface

A critical misconfiguration in Amazon Web Services (AWS) CodeBuild could have allowed attackers to gain complete control over GitHub repositories used in AWS CI/CD pipelines, including the widely used AWS JavaScript SDK, introducing a severe software supply chain risk. This vulnerability, codenamed CodeBreach, stemmed from insufficiently restrictive CI pipeline configurations, build triggers, and webhook filters.

Read Post

Indusface

Read more about CodeBreach: Critical AWS CodeBuild Misconfiguration Enabling Supply Chain Repository Takeover

Cloudflare strengthens content offering to AI companies with acquisition of Human Native

Jan 15, 2026 By Cloudflare In Cloudflare

Acquisition will help create a new business model for the Internet by transforming original content into high-quality, AI-ready data and facilitating transparent value exchange in the AI era.

Read Post

Cloudflare

Read more about Cloudflare strengthens content offering to AI companies with acquisition of Human Native

Human Native is joining Cloudflare

Jan 15, 2026 By Will Allen In Cloudflare

Today, we’re excited to share that Cloudflare has acquired Human Native, a UK-based AI data marketplace specializing in transforming multimedia content into searchable and useful data.

Read Post

Cloudflare

Read more about Human Native is joining Cloudflare

Best Cloud Workload Protection Solutions: A Runtime-First Evaluation Guide

Jan 15, 2026 By Jonathan Kaftzan In ARMO

What is a cloud workload protection platform (CWPP)? Security for the workloads actually running in your cloud—VMs, containers, and serverless functions doing real work. Unlike posture management (CSPM) that checks configurations, CWPPs monitor processes, network connections, and application behavior to catch threats as they happen. What’s the difference between CSPM, CWPP, CNAPP, and CADR? CSPM scans cloud settings for misconfigurations. CWPP protects running workloads.

Read Post