Jay Chen, Author at Unit42

A conceptual image representing cloud service providers. So far, ransomware in public clouds is rare, partly due to the attention cloud service providers pay to securing their infrastructure.

8,728

people reacted

A Look Into Public Clouds From the Ransomware Actor's Perspective

By Jay Chen
May 16, 2022 at 6:00 AM

14 min. read

A conceptual image representing misconfigurations in the cloud, including insecurely exposed services.

49,625

people reacted

Observing Attacks Against Hundreds of Exposed Services in Public Clouds

By Jay Chen
November 22, 2021 at 12:00 PM

7 min. read

A conceptual image representing network scanning, such as the network scanning traffic researchers observed in public clouds.

38,212

people reacted

Network Scanning Traffic Observed in Public Clouds

By Jay Chen
October 28, 2021 at 6:00 AM

6 min. read

A conceptual image representing Kubernetes topics, including the unsecured Kubernetes instances discussed here.

30,216

people reacted

Unsecured Kubernetes Instances Could Be Vulnerable to Exploitation

By Jay Chen, Aviv Sasson and Ariel Zelivansky
April 23, 2021 at 5:40 PM

11 min. read

This conceptual image covers the concept of container security. Attacks on containers, such as that of the Hildegard malware detailed here, can allow attackers access to a large amount of computing resources.

61,017

people reacted

Hildegard: New TeamTNT Cryptojacking Malware Targeting Kubernetes

By Jay Chen, Aviv Sasson and Ariel Zelivansky
February 3, 2021 at 6:00 AM

10 min. read

A conceptual image illustrating finding vulnerabilities on the web. IAMFinder is a custom open source tool that can help organizations identify information leakage in AWS accounts.

32,814

people reacted

IAMFinder: Open Source Tool to Identify Information Leaked from AWS IAM Reconnaissance

By Jay Chen
November 19, 2020 at 12:00 PM

6 min. read

This conceptual image illustrates some of the security and configuration issues involved with the cloud, such as the issue with AWS resource-based policy APIs discussed here.

43,769

people reacted

Information Leakage in AWS Resource-Based Policy APIs

By Jay Chen
November 17, 2020 at 3:00 AM

6 min. read

The conceptual image illustrates the idea of the risks that misconfigured IAM roles can pose for cloud workloads.

32,660

people reacted

Unit 42 Cloud Threat Report: Misconfigured IAM Roles Lead to Thousands of Compromised Cloud Workloads

By Jay Chen
October 8, 2020 at 6:00 AM

15 min. read

This conceptual image illustrates trends in cybersecurity

30,378

people reacted

The State of Exploit Development: 80% of Exploits Publish Faster than CVEs

By Jay Chen
August 26, 2020 at 6:00 AM

8 min. read

34,889

people reacted

COVID-19: Cloud Threat Landscape

By Jay Chen
May 4, 2020 at 6:00 AM

6 min. read

34,157

people reacted

Unit 42 CTR: Leaked Code from Docker Registries

By Jay Chen
February 7, 2020 at 6:00 AM

7 min. read

32,821

people reacted

Attacker’s Tactics and Techniques in Unsecured Docker Daemons Revealed

By Jay Chen
January 29, 2020 at 6:00 AM

10 min. read

27,975

people reacted

Server-Side Request Forgery Exposes Data of Technology, Industrial and Media Organizations

By Jay Chen
November 26, 2019 at 6:00 AM

9 min. read

69,082

people reacted

Graboid: First-Ever Cryptojacking Worm Found in Images on Docker Hub

By Jay Chen
October 16, 2019 at 6:00 AM

6 min. read

55,270

people reacted

Hunting the Public Cloud for Exposed Hosts and Misconfigurations

By Jay Chen
August 12, 2019 at 6:00 AM

11 min. read

Posts created by: Jay Chen

A Look Into Public Clouds From the Ransomware Actor's Perspective

Observing Attacks Against Hundreds of Exposed Services in Public Clouds

Network Scanning Traffic Observed in Public Clouds

Unsecured Kubernetes Instances Could Be Vulnerable to Exploitation

Hildegard: New TeamTNT Cryptojacking Malware Targeting Kubernetes

IAMFinder: Open Source Tool to Identify Information Leaked from AWS IAM Reconnaissance

Information Leakage in AWS Resource-Based Policy APIs

Unit 42 Cloud Threat Report: Misconfigured IAM Roles Lead to Thousands of Compromised Cloud Workloads

The State of Exploit Development: 80% of Exploits Publish Faster than CVEs

COVID-19: Cloud Threat Landscape

Unit 42 CTR: Leaked Code from Docker Registries

Attacker’s Tactics and Techniques in Unsecured Docker Daemons Revealed

Server-Side Request Forgery Exposes Data of Technology, Industrial and Media Organizations

Graboid: First-Ever Cryptojacking Worm Found in Images on Docker Hub

Hunting the Public Cloud for Exposed Hosts and Misconfigurations

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account