Cloud Security Alliance

Beyond Workday: Why Socially Engineered SaaS Breaches Are Spreading

Explores how attackers use social engineering to breach SaaS platforms, the rise of identity-based ITDR, and lessons for cloud security.
Cloud Security AllianceOpinion

The Ghost in the Machine is a Compulsive Liar

Explores why AI hallucinations occur like dreams and how to tame them with policy, data integrity, and retrieval-augmented ...
Cloud Security Alliance

The CSA Triangle Chapter’s Year of Momentum: 2025 Highlights

Building on a strong foundation, the CSA Triangle Chapter continued its mission in 2025 to advance education and awareness across Cloud Security, Zero Trust, and AI Safety; forge powerful partnerships ...
Cloud Security Alliance

How to Build AI Prompt Guardrails: An In-Depth Guide for Securing Enterprise GenAI

A practical guide to building AI prompt guardrails, with DLP, data labeling, online tokenization, and governance for secure ...
Cloud Security Alliance

Why Your Copilot Needs a Security Co-Pilot: Enhancing GenAI with Deterministic Fixes

How teams blend generative AI with deterministic security for infrastructure to reduce misconfigurations and improve ...
Cloud Security Alliance

RansomHub Is Gone—But Their ESXi Ransomware Tactics Still Threaten Virtual Infrastructure

Examines RansomHub's ESXi ransomware pivot, its disappearance, DragonForce's rise, and what virtualization security means for defenders.
Cloud Security Alliance

Microsoft Entra ID Vulnerability: The Discovery That Shook Identity Security

An in-depth examination of the Microsoft Entra ID vulnerability exposing tenant isolation weaknesses, MFA gaps, and ...
Cloud Security Alliance

Zero Trust for OT in Manufacturing: A Practical Path to Modern Industrial Security

A practical guide to applying Zero Trust in OT manufacturing, focusing on identity, segmentation, and continuous verification.