Crying Out Cloud

🚨 Everything you need to know about CodeBreach with Yuval AvrahamiOn this episode of Crying Out Cloud, Eden Koby Naftali & Amitai Cohen sit down with Wiz researcher Yuval Avrahami to unpack a major supply-chain flaw that put cloud environments at risk ↓Misconfigured CodeBuild instances used by AWS themselvesOne small regex mistake, huge consequencesHow an SDK used by the AWS Console could have been hijacked (!)The CI/CD controls that can mitigate this risk

🎙️ Shai-Hulud, Shai-Hulud 2.0, are you keeping up?In this episode of Crying Out Cloud, Eden Koby Naftali & Amitai Cohen go deep into real-world cloud security incidents ↓How Shai-Hulud evolved into Shai-Hulud 2.0A vulnerability affecting Apache TikaReact2Shell and its implicationsGogs zero-day explainedYou DONT want to miss this!This is a technical, concrete conversation focused on how attacks actually happen, how they evolve, and what defenders need to understand to keep up.

🎙️ AI is changing the rules of cyber, are you keeping up?Eden Naftali goes live with leading voices in cloud security:Ryan Nolette (AWS), @John Miller (Google Cloud), and Alon Schindel (Wiz). This episode is essential listening for anyone defending at cloud scale. 👇🔍 Inside ↓1) How AI is supercharging attacker tactics — from hyper-variable phishing to rapid exploit generation2) The rise of "AI slop" and why it's burning analysts' time3) Emerging AI bug-hunters — what they can (and can't) do

Detection engineering just got real!Eden Naftali and Amitai sit down with detection engineering powerhouse Alex Hurtado - and it's a must-listen for anyone in cloud security. 👇🔍 What's inside:The evolution of detection engineering in the cloud — and why traditional rules no longer applyWhy DIY detections > vendor defaultsHow AI is reshaping detection and threat hunting (and why the human in the loop still wins)

🔍 From discovering VS Code supply chain risks → to uncovering Redis Shell vulnerabilities.Eden Naftali and Amitai sat down to unpack: 👇How VS Code extensions became a critical supply chain risk (w/ Rami McCarthy)What RediShell reveals about attacker innovationWhere AI is being weaponized in modern malware🎙️ Listen now to our NEW Crying Out Cloud episode