Get updates from Sonrai | Enterprise Cloud Security Platform via email, on your phone or read them on follow.it on your own custom news page.
You can filter the news from Sonrai | Enterprise Cloud Security Platform that get delivered to you using tags or topics or you can opt for all of them. Unsubscription is also very simple.
See the latest news from Sonrai | Enterprise Cloud Security Platform below.
Site title: Enterprise Cloud Security Solutions from the Inside | Sonrai
Is this your feed? Claim it!
As December 2025 comes to a close, Sonrai’s latest review of newly released AWS permissions highlights a continued expansion of cloud privilege. This month’s updates span identity, observability, AI, and managed service infrastructure, with changes across CloudWatch, CloudFront, Bedrock, EKS, SageMaker, and emerging agent-based platforms.
Together, these permissions...
The recent discovery of a cryptomining campaign targeting Amazon compute resources highlights a critical gap in traditional cloud defense. Attackers are bypassing perimeter defenses by leveraging compromised credentials to ...
Privilege escalation in AWS is evolving. Classic IAM issues still matter, but attackers now exploit service-based execution paths, orchestration layers, and new AI-driven services like Bedrock and Bedrock AgentCore. Sonrai Security partnered with Software Secured to exploit a number of ...
As November 2025 comes to a close, Sonrai’s latest review of newly released AWS permissions shows a continued expansion of privileges that directly affect observability, anomaly detection, and identity-based access. This month’s updates center on Amazon Managed Service for Prometheus and AWS Security Token Service, introducing new ways to alter or disable logging pipelines, w...
Tl;DR Cloud networking is a fragile, high-value target – DNS and traffic routing incidents can quickly cascade and disrupt dependent services. Over-privileged IAM identities enable traffic hijacking – Permissions across Route53, API Gateway, ELB, CloudFront, and Lightsail can be abused to redirect traffic, break services, and exfiltrate d...
