In 2023, a threat actor launched a social engineering campaign on Retool involving smishing & credential harvesting, leading them to a one-time password token.

The Cloud Security Alliance (CSA) events are available worldwide and allow attendees to network while learning more about best practices for cloud security.

Why do manual identity workflows continue to exist, when the consequences of getting them wrong are so serious and when ...

Traditional cybersecurity risk management is becoming ineffective. This survey report shows how data security risk assessment practices still need to change.

Most companies have not turned cybersecurity awareness—especially in cloud & SaaS environments—into action. They need to ...

Hypervisors have demonstrated the potential for widespread outages and data loss. SOC 2 offers a robust compliance framework ...

Infrastructure as Code (IaC) promises consistency and control. But no matter how pristine your IaC is, your actual cloud ...

With real-time insight, defined ownership, & tools that uncover more than surface-level, teams can turn SaaS from a ...

Security remediation involves identifying, evaluating, and addressing security vulnerabilities to mitigate potential risks. In the ever-evolving landscape of cybersecurity, this remains a critical ...

Join a Worldwide Professional Network with CSA Chapters Build connections, grow your expertise, and shape the future of cloud security—locally and globally.

Working Group Overview This working group aims to develop Zero Trust standards to achieve consistency for cloud, hybrid and mobile endpoint environments. The topic of group discourse include Zero ...

Establishing AI governance and compliance standards, shaping policy, and setting the industry benchmark.