[Some Interesting] Cloud ‘n Sec news: 18th Feb 22

What’s worth your reading time

Cloud

Azure

Improving Azure VM monitoring capabilities with Project Flash

This is first public release of Project flash, which is the internal name given to efforts to around improvign Azure VM availaiblity metrics within Azure.

Flash, as the project is internally known, is a collection of efforts across Azure Engineering, that aims to evolve Azure’s virtual machine (VM) availability monitoring ecosystem into a centralized, holistic, and intelligible solution customers can rely on to meet their specific observability needs. Today, we’re excited to announce the completion of the project’s first two milestones — the preview of VM availability data in Azure Resource Graph, and the private preview of a VM availability metric in Azure Monitor.

This initial release includes 2 capabilities:

First, at-scale analysis for VM availability: VM availability statuses in Azure Resource graph, meaning Kusto Query Language querying is now supported.

Second, VM availability metric in Azure Monitor: An out-of-box VM availability metric great for quick and easy debugging to catch early signs of performance degradation and more.

Read more in the Article: Advancing Azure Virtual Machine availability monitoring with Project Flash | Azure Blog and Updates | Microsoft Azure

GCP

Google Cloud’s First CISO

A first for the platform, is an experienced professional who has focused on Securing and making security better for people, according to himself.

He emphasizes how Google Cloud much like security focused cloud providers can improve customers’ security posture by “looping”, in an interview to SDXcentral, he said:

For the first time in history, we’ve got this feedback loop happening

Quite an interesting article to see who he is as well.

Read the full interview here: Google Cloud’s CISO Wants to Talk About Your Digital Immune System — SDxCentral

Security

One of the biggest NFL teams has been hit by Ransomware attack this week.

Blackbyte strain infected San Francisco 49ers. Some data was stolen and network disruption was caused by the attack, though the victim did not confirm whether the ransomware encrypted devices or not by the time of the report below.

More details here: https://www.bleepingcomputer.com/news/security/nfls-san-francisco-49ers-hit-by-blackbyte-ransomware-attack/

Think twice before modding Steam games

This one is another example why gaming should never be done in the same device as your main files are. Amongst other reasons, of course.

Steam has identified and block a user who offered a mod with hidden ability to download malicious files including keyloggers and bitcoin mining software into gamers’ machines.

The mod was for Cities: Skylines and the malicious user had apparently performed malicious activities on this game before, like DDoxing other users.

Some of the reasons why I prefer consoles and single player games overall…

Read the full report here: https://www.pcgamer.com/valve-bans-cities-skylines-modder-accused-of-hiding-malicious-code-in-mods/

Follow me on twitter: Camillo (@iamcamillo) / Twitter

Learn more about my Cloud and Security Projects:

Web: www.cloudnsec.com

Listen: bit.ly/cloudnsecspotify
Watch: bit.ly/cloudnsecyoutube

Thank you for reading and leave your thoughts/comments!

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store