fwd:cloudsec conference this week, Vulnerabilities discovered in AWS - Cloud Security News

<p>Cloud Security News this week - 15 September 2021</p> <ul> <li><a href="https://www.crn.com/news/cloud/oracle-s-larry-ellison-hits-aws-on-cost-security-as-he-pounces-on-rivals"><u>Oracle Chief Technology Officer and co-founder Larry Ellison told &nbsp;their investors this week that Oracle Cloud is superior to AWS when it comes to security and cost. He shared that they don't think &nbsp;an application should talk to five or six separate databases referencing AWS’ database offerings and calling it a &nbsp;very, very risky security architecture.</u></a><u> </u><a href="https://www.gartner.com/doc/reprints?id=1-271OE4VR&amp;ct=210802&amp;st=sb"><u>If you are keen to learn more about how the cloud providers rank, Gartner released a report in July 2021 noting that over 90% of the worldwide cloud market was concentrated in just four cloud providers. Amazon Web Services and Microsoft lead the market with Alibaba and Google as the next closest competitors.</u></a></li> <li><a href="https://www.wiz.io/blog/secret-agent-exposes-azure-customers-to-unauthorized-code-execution"><u>The research team at Wiz has recently discovered four vulnerabilities in the &nbsp;little-known software agent called Open Management Infrastructure (OMI) that is embedded in many popular Azure services.</u></a><a href="https://www.wiz.io/blog/secret-agent-exposes-azure-customers-to-unauthorized-code-execution"><u>When customers sets up a Linux virtual machine in their cloud, the OMI agent is deployed automatically when they enable certain Azure services. Without a patch, attackers can easily exploit these four vulnerabilities to escalate root or highest privileges and remotely execute malicious code. </u></a><a href="https://www.wiz.io/blog/secret-agent-exposes-azure-customers-to-unauthorized-code-execution"><u>Microsoft has issued a patch to address this during their Patch Tuesday release on 14 September 2021</u></a></li> <li><a href="https://aws.amazon.com/blogs/aws/amazon-eks-anywhere-now-generally-available-to-create-and-manage-kubernetes-