Blog

A New Incentive for Using AWS VPC Endpoints

If you haven’t been using VPC endpoints until now, AWS’s two new condition keys should make you consider doing so

Lior Zatlavi By Lior Zatlavi

A Letter from the CEO

Introducing the Ermetic Cloud-Native Application Protection Platform

Shai Morag By Shai Morag

EmojiDeploy: Smile! Your Azure web service just got RCE’d ._.

Ermetic’s research team discovered a remote code execution vulnerability affecting services such as Function Apps, App Service and Logic Apps…

Liv Matan By Liv Matan

Latest

Navigating Cloud Security: Why Segregating Environments from Dev to Production is so Important

Segregation in cloud environments is important for security – this post explores why and offers best practice tips for acting…

Moshe Ben Dahan By Moshe Ben Dahan

Managing Cloud Compliance and Security Posture

Why compliance and access security in the public cloud are so challenging – and how carefully chosen CSPM tools can…

Ermetic Team By Ermetic Team

Perceived Cloud Security vs. Reality: Test Yourself

Shun complacency your cloud security probably needs to be better than you or your organization perceive it to be.

Ermetic Team By Ermetic Team

Get a Demo

See how Ermetic can help secure your data.

Get a Demo

Cloud

See all

How to Implement CIEM – A Checklist

What differentiates a CIEM solution from other cloud security platforms, and how should a CIEM be used in an organization?…

Ermetic Team By Ermetic Team

Fauda: When Hollywood and Cybersecurity Meet

The newest season of Fauda, now streaming on Netflix, is a real Hollywood meets Cybersecurity moment. Find out how realistic…

Ermetic Team By Ermetic Team

Why JIT Access is an Essential Part of Cloud Security

Automating JIT in the cloud is win-win for improving security and business productivity — and cracks a nut that PAM…

Ermetic Team By Ermetic Team

Start a free trial

See how Ermetic can help secure your data.

Start Now

AWS

See all

AWS EC2 IMDS – What You Need to Know

Read this review of IMDS, an important AWS EC2 service component, to understand its two versions and improve your AWS…

Lior Zatlavi By Lior Zatlavi

How to Minimize Unintended Access and Achieve Least Privilege with Ermetic and AWS

Lior Zatlavi explains how to set up the platform in your environment and get maximum value

Lior Zatlavi By Lior Zatlavi

IAM Role Trust Update – What You Need to Know

When it comes to assuming roles, AWS is changing an aspect of how trust policy is evaluated; here is a…

Lior Zatlavi By Lior Zatlavi

Subscribe for updates

Get the posts in your email

    Azure

    See all

    A Caveat for Azure VM Public IP Configuration

    If you’re not familiar enough with the SKU attribute of the Azure public IP address, you may think you’re configuring…

    Lior Zatlavi By Lior Zatlavi

    Public Network Access to Azure Resources Is Too Easy to Configure

    For some types of Microsoft Azure resources and subnets, it’s extremely easy to configure what is essentially public network access.…

    Lior Zatlavi By Lior Zatlavi

    Access Keys: An Unintended Backdoor-by-Design to Azure Storage Accounts Data

    The importance of understanding the assignments of Azure resource roles when giving permissions.

    Lior Zatlavi By Lior Zatlavi

    Missed a webinar? 

    Check out our on-demand options.

    Watch now

    GCP

    See all

    How Attackers Can Exploit GCP’s Multicloud Workload Solution

    A deep dive into the inner workings of GCP Workload Identity Federation, taking a look at risks and how to…

    Liv Matan By Liv Matan

    The Advanced Risk of Basic Roles In GCP IAM

    Basic roles in GCP allow data-level actions, even though at first glance it might seem like they don’t. Avoid using…

    Lior Zatlavi By Lior Zatlavi

    Identity Access Management in Google Cloud Platform (GCP IAM)

    An introduction for anyone getting started with GCP or even experienced professionals who are looking for a structured overview.

    Lior Zatlavi By Lior Zatlavi