OffSequenceMay 8
⚠️ CRITICAL: CVE-2026-33844 in Azure Managed Instance for Apache Cassandra allows authorized attackers to execute code remotely via improper input validation. Microsoft manages remediation — verify your instances are patched. More info: https://radar.offseq.com/threat/cve-2026-33844-cwe-20-improper-input-validation-in-b6b26cec #OffSeq #Azure #CVE #CloudSec
OffSequenceMay 8
🛡️ CVE-2026-35428 (CRITICAL, CVSS 9.6) affects Microsoft Azure Cloud Shell via command injection (CWE-77). Exploitation enables spoofing over networks. Microsoft has deployed a fix — update your environments! Details: https://radar.offseq.com/threat/cve-2026-35428-cwe-77-improper-neutralization-of-s-2b3310c3 #OffSeq #Azure #Vulnerability #CloudSec
DoyensecApr 27

Join #Doyensec at #DEFCON Singapore 🇸🇬 - Demo Labs!

Our Mohamed Ouad and Francesco Lacerenza present CloudSec Tidbits: Breaking “Secure-Looking” Cloud Architectures

See real-world cloud/AppSec bugs & labs

Details - https://defcon.org/html/defcon-singapore/dc-singapore-demolabs.html

🗓 Tue 14:00 | Wed 12:00 | Thu 13:00

#cloudsec #appsec #security

OffSequenceDec 19
🚨 CRITICAL: CVE-2025-65037 in Azure Container Apps enables unauthenticated remote code injection (CVSS 10). No patch yet — restrict access, monitor for attacks, update IR plans. Full advisory: https://radar.offseq.com/threat/cve-2025-65037-cwe-94-improper-control-of-generati-ddd87b56 #OffSeq #Azure #CloudSec #Vulnerability
OffSequenceOct 26, 2025
🚩 CoPhish phishing campaign (HIGH severity) targets Copilot Studio agents to steal OAuth tokens — enabling session hijack & cloud access. No CVE. User training, OAuth app reviews, and token monitoring are key. Details: https://radar.offseq.com/threat/new-cophish-attack-steals-oauth-tokens-via-copilot-266ec823 #OffSeq #OAuth #Phishing #CloudSec
OffSequenceOct 23, 2025
⚠️ HIGH-severity operational risk: the remediation gap in multi-tool cloud environments delays fixing critical vulnerabilities. Solutions like Pentera Resolve automate and unify workflows, reducing exposure and ensuring compliance. More info: https://radar.offseq.com/threat/bridging-the-remediation-gap-introducing-pentera-r-0c2edfa6 #OffSeq #VulnMgmt #CloudSec
BSidesLuxembourgSep 13, 2025

Dear fantastic BSides community.

So here it is, the #BSidesLuxembourg2026 date announcement!!

We’re expanding into a 3-day event! It will be very exciting, we hope you all agree !?

May 6th will be exclusively for workshops.
May 7-8th will be for various talk tracks, tracks to be determined at a later stage but might include:

1 #Offsec
2. #CloudSec
3. #SOC
4. Etc

Do you have a track idea? Shoot it at us!

#bsides
Feel free to boost, fam.

Claus Cramon HoumannAug 18, 2025

Tickets booked for #fwdcloudseceurope - hope to meet some new and old faces there!

#CloudSec #Fwdcloudsec

Tanya Janca | SheHacksPurple  Aug 13, 2025

🎥 Missed one of my past conference talks? Let’s fix that.

I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.

“Cloud Native Security; Explained”
📽️ https://twp.ai/4ipSVP

#CyberSecurity #SecurityAwareness #cloudsec #cloud #cloudnative

Cloud Summit 2021: Cloud Native Security with Tanya Janca

YouTube
Tanya Janca | SheHacksPurple  Jul 18, 2025

🎥 Missed one of my past conference talks? Let’s fix that.

I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.

“Cloud Native Security; Explained”
📽️ https://twp.ai/4iosID

#CyberSecurity #SecurityAwareness #cloudsec #cloud #cloudnative

Cloud Summit 2021: Cloud Native Security with Tanya Janca

YouTube