Cybersecurity researchers have disclosed two new attack techniques against infrastructure-as-code (IaC) and policy-as-code (PaC) tools like HashiCorp’s Terraform and Styra’s Open Policy Agent (OPA) that leverage dedicated, domain-specific languages (DSLs) to breach cloud platforms and exfiltrate data.
“Since these are hardened languages with limited capabilities, they’re supposed to be more
Related Post
- February 22, 2025
Bybit Confirms Record-Breaking $1.46 Billion Crypto Heist in
Cryptocurrency exchange Bybit on Friday revealed that a “sophisticated” attack led to the theft of over $1.46 billion worth of
- February 22, 2025
OpenAI Bans Accounts Misusing ChatGPT for Surveillance and
OpenAI on Friday revealed that it banned a set of accounts that used its ChatGPT tool to develop a suspected
- February 21, 2025
Friday Squid Blogging: New Squid Fossil
A 450-million-year-old squid fossil was dug up in upstate New York. Blog moderation policy.
- February 21, 2025
Apple Drops iCloud’s Advanced Data Protection in the
Apple is removing its Advanced Data Protection (ADP) feature for iCloud from the United Kingdom with immediate effect following government