InfoSecBulletin Cybersecurity for mankind
The NSA and CISA have released five bulletins on securing a cloud environment. Cloud services are very popular for businesses because they offer managed servers, storage, and applications without the need to manage their own infrastructure.
Many enterprise application developers now offer both on-premise and cloud-hosted versions of their services. This helps corporate admins by relieving them of some responsibilities.
F5 to acquire CalypsoAI for $180M for Advanced AI Security Capabilities
AI Pentesting Tool ‘Villager’ Merges Kali Linux with DeepSeek AI for Automated Attacks
CVE-2025-21043
Samsung Patched Critical Zero-Day Flaw Exploited in Android Attacks
Albania appoints world’s first AI minister, “Diella” to Tackle Corruption
L7 DDoS Botnet Hijacked 5.76M Devices for Large Attacks
Palo Alto Networks User-ID Credential Agent Vuln Exposes password In Cleartext
CyberVolk Ransomware Attacks CII In Japan, France, and UK
Microsoft warns of active directory and office vulnarability
(CVE-2025-10159)
Sophos Addressed Critical Auth Bypass flaw in Wireless Access Points
1.6M fitness phone call recordings exposed online
CISA and the National Security Agency (NSA) released five joint Cybersecurity Information Sheets (CSIs) to provide organizations with recommended best practices and/or mitigations to improve the security of their cloud environment(s).
Use Secure Cloud Identity and Access Management Practices
Use Secure Cloud Key Management Practices
Implement Network Segmentation and Encryption in Cloud Environments
Secure Data in the Cloud
Mitigate Risks from Managed Service Providers in Cloud Environments
Review CISA and NSA recommendations and apply their suggestions to enhance cloud security. For more details on cloud security best practices, visit CISA’s SCuBA Project and TIC pages.
