Crying Out Cloud

🎙️ Shai-Hulud, Shai-Hulud 2.0, are you keeping up?In this episode of Crying Out Cloud, Eden Koby Naftali & Amitai Cohen go deep into real-world cloud security incidents ↓How Shai-Hulud evolved into Shai-Hulud 2.0A vulnerability affecting Apache TikaReact2Shell and its implicationsGogs zero-day explainedYou DONT want to miss this!This is a technical, concrete conversation focused on how attacks actually happen, how they evolve, and what defenders need to understand to keep up.

🎙️ AI is changing the rules of cyber, are you keeping up?Eden Naftali goes live with leading voices in cloud security:Ryan Nolette (AWS), @John Miller (Google Cloud), and Alon Schindel (Wiz). This episode is essential listening for anyone defending at cloud scale. 👇🔍 Inside ↓1) How AI is supercharging attacker tactics — from hyper-variable phishing to rapid exploit generation2) The rise of "AI slop" and why it's burning analysts' time3) Emerging AI bug-hunters — what they can (and can't) do

Detection engineering just got real!Eden Naftali and Amitai sit down with detection engineering powerhouse Alex Hurtado - and it's a must-listen for anyone in cloud security. 👇🔍 What's inside:The evolution of detection engineering in the cloud — and why traditional rules no longer applyWhy DIY detections > vendor defaultsHow AI is reshaping detection and threat hunting (and why the human in the loop still wins)

🔍 From discovering VS Code supply chain risks → to uncovering Redis Shell vulnerabilities.Eden Naftali and Amitai sat down to unpack: 👇How VS Code extensions became a critical supply chain risk (w/ Rami McCarthy)What RediShell reveals about attacker innovationWhere AI is being weaponized in modern malware🎙️ Listen now to our NEW Crying Out Cloud episode

🚨 The kernel-level security revolution you can't ignore — a must-listen with Liz RiceEden Naftali and Amitai sit down with Liz Rice, Chief Open Source Officer at Isovalent (Cisco), and a global expert in eBPF, containers, and Kubernetes security.🎙️ In this episode:How eBPF is reshaping cloud security from the ground upPractical strategies to tackle open source supply chain attacks (a hot topic given today’s events)A must-listen for anyone building or securing cloud infrastructure in an era of AI coding and supply chain attacks.