Penetrating the Cloud: Uncovering Unknown Vulnerabilities
For an increasing number of organizations, the explosion in attack surfaces has reached unmanageable levels amid the widespread adoption of cloud services. In fact, 79% of companies have experienced at least one cloud data breach in the last 18 months, often due to unknown vulnerabilities.
One of the key challenges in the unprecedented growth in cloud infrastructure is understanding which vulnerabilities and misconfigurations are the most exploitable and impactful. While many organizations spend a lot of time fixing the issues they can easily identify with tools, tools have limitations and often do not operate in the same vein as a hacker. Uniquely, an offensive security approach offers the ability to identify the type of attack paths that a malicious attacker will actually take and, therefore, better prepare against.
This session offers two distinct ways (zero-knowledge & assumed-breach perspectives) to proactively identify, understand, and mitigate the most impactful vulnerabilities lurking in your cloud environment.
Seth Art, Principal Security Consultant at Bishop Fox, and Nate Robb, Senior Operator at Bishop Fox, discuss:
• How hackers can gain access to cloud environments (even when they aren’t targeting them)
• The methodology of exploiting cloud vulnerabilities through cloud penetration testing with an assumed breach mindset
• Actual Bishop Fox findings and real-world examples from both viewpoints
• Actionable key takeaways and recommendations to implement today
Learn more about Bishop Fox's Cloud Penetration Testing Services