{"product_id":"cloud-attack-vectors-9781484282359","title":"Cloud Attack Vectors","description":"\u003cb\u003eBook Synopsis\u003c\/b\u003e\u003cbr\u003eCyberattacks continue to increase in volume and sophistication, targeting everything owned, managed, and serviced from the cloud. Today, there is widespread consensusit is not a matter ofif, but ratherwhenan organization will be breached. Threat actors typically target the path of least resistance. With the accelerating adoption of cloud technologies and remote work, the path of least resistance is shifting in substantive ways. In recent years, attackers have realigned their efforts, focusing on remaining undetected, monetization after exploitation, and publicly shaming organizations after a breach.   New, innovative, and useful products continue to emerge and offer some cloud protection, but they also have distinct limitations. No single, standalone solution or strategy can effectively protect against all cloud attack vectors or identify all malicious activity. The simple fact is that the cloud is based on a company's assets being offered as services.As a result, the best security any\u003cbr\u003e\u003cbr\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e\u003cbr\u003e\u003cb\u003eForward\u003c\/b\u003e\u003cp\u003e\u003cb\u003eIntroduction\u003c\/b\u003e\u003c\/p\u003e  \u003cp\u003e\u003cb\u003eChapter 1. Cloud Computing\u003c\/b\u003e\u003c\/p\u003e  \u003cp\u003eSoftware as a Service\u003c\/p\u003e  \u003cp\u003ePlatform as a Service\u003c\/p\u003e  \u003cp\u003eInfrastructure as a Service\u003c\/p\u003e  \u003cp\u003eFunction as a Service\u003c\/p\u003e  X as a Service\u003cp\u003e\u003c\/p\u003e  \u003cp\u003eDesktop as a Service\u003c\/p\u003e  \u003cp\u003eData Center as a Service\u003c\/p\u003e  Managed Software as a Service\u003cp\u003e\u003c\/p\u003e  \u003cp\u003eBackend as a Service\u003c\/p\u003e  \u003cp\u003e \u003c\/p\u003e  \u003cp\u003e\u003cb\u003eChapter 2. Cloud Providers\u003c\/b\u003e\u003c\/p\u003e  Amazon Web Services\u003cp\u003e\u003c\/p\u003e  \u003cp\u003eMicrosoft Azure\u003c\/p\u003e  \u003cp\u003eGoogle Cloud Platform\u003c\/p\u003e  \u003cp\u003eOracle Cloud\u003c\/p\u003e  \u003cp\u003eAlibaba\u003c\/p\u003e  \u003cp\u003eOther Services\u003c\/p\u003e  \u003cp\u003e \u003c\/p\u003e  \u003cp\u003e\u003cb\u003eChapter 3. Cloud Definitions\u003c\/b\u003e\u003c\/p\u003e  \u003cp\u003eIdentities\u003c\/p\u003e  \u003cp\u003eAccounts\u003c\/p\u003e  \u003cp\u003eEntitlements\u003c\/p\u003e  \u003cp\u003ePrivileges\u003c\/p\u003e  \u003cp\u003eRights\u003c\/p\u003e  \u003cp\u003ePermissions\u003c\/p\u003e  \u003cp\u003eContainers\u003c\/p\u003e  Segmentation\u003cp\u003e\u003c\/p\u003e  \u003cp\u003eMicrosegmentation\u003c\/p\u003e  \u003cp\u003eInstances\u003c\/p\u003e  \u003cp\u003e \u003c\/p\u003e  \u003cp\u003eChapter 4. Asset Management\u003c\/p\u003e  \u003cp\u003eDiscovery\u003c\/p\u003e  \u003cp\u003e \u003c\/p\u003e  \u003cp\u003e\u003cb\u003eChapter 5. Attack Vectors\u003c\/b\u003e\u003c\/p\u003e  Entitlements\u003cp\u003e\u003c\/p\u003e  \u003cp\u003eVulnerabilities\u003c\/p\u003e  \u003cp\u003eHardening\u003c\/p\u003e  \u003cp\u003eConfigurations\u003c\/p\u003e  \u003cp\u003eCredentials\u003c\/p\u003e  \u003cp\u003eS3 Buckets\u003c\/p\u003e  \u003cp\u003eIdentities\u003c\/p\u003e  \u003cp\u003eEntitlements\u003c\/p\u003e  \u003cp\u003eAPI\u003c\/p\u003e  \u003cp\u003eAuthentication\u003c\/p\u003e  \u003cp\u003eCertificates\u003c\/p\u003e  Phishing\u003cp\u003e\u003c\/p\u003e  \u003cp\u003eRemote Access\u003c\/p\u003e  \u003cp\u003eSupply Chain – 3rd Party MSP\/MSSP\u003c\/p\u003e  \u003cp\u003e \u003c\/p\u003e  \u003cp\u003eChapter 6. Mitigations\u003c\/p\u003e  \u003cp\u003eHardening\u003c\/p\u003e  \u003cp\u003ePatch Management\u003c\/p\u003e  \u003cp\u003ePAM\u003c\/p\u003e  \u003cp\u003eCIEM\u003c\/p\u003e  \u003cp\u003eCIAM\u003c\/p\u003e  \u003cp\u003eCWPP\u003c\/p\u003e  \u003cp\u003e \u003c\/p\u003e  \u003cp\u003eChapter 7. Regulatory Compliance\u003c\/p\u003e  \u003cp\u003eSecurity Questionnaires\u003c\/p\u003e  \u003cp\u003eSOC\u003c\/p\u003e  \u003cp\u003eType I\u003c\/p\u003e  \u003cp\u003eType II\u003c\/p\u003e  \u003cp\u003eType III\u003c\/p\u003e  \u003cp\u003eCloud Security Alliance\u003c\/p\u003e  CCM\u003cp\u003e\u003c\/p\u003e  \u003cp\u003eCAIQ\u003c\/p\u003e  \u003cp\u003eCIS Controls\u003c\/p\u003e  \u003cp\u003ePCI DSS\u003c\/p\u003e  \u003cp\u003eISO\u003c\/p\u003e  \u003cp\u003eNIST\u003c\/p\u003e  \u003cp\u003eFedRamp\u003c\/p\u003e  \u003cp\u003e \u003c\/p\u003e  \u003cp\u003eChapter 8. Architectures\u003c\/p\u003e  \u003cp\u003eZero Trust\u003c\/p\u003e  \u003cp\u003eCloud-Native\u003c\/p\u003e  Hybrid\u003cp\u003e\u003c\/p\u003e  \u003cp\u003eEphemeral Implementations\u003c\/p\u003e  \u003cp\u003eAccounts\u003c\/p\u003e  \u003cp\u003eInstances\u003c\/p\u003e  \u003cp\u003ePrivileges\u003c\/p\u003e  \u003cp\u003e\u003cbr\u003e \u003cb\u003eChapter 9. \u003c\/b\u003eImposter Syndrome\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e  \u003cp\u003e\u003cb\u003eChapter 10. Recommendations\u003c\/b\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e  \u003cp\u003e\u003cb\u003eChapter 11. Conclusion\u003c\/b\u003e\u003c\/p\u003e","brand":"APress","offers":[{"title":"Default Title","offer_id":53515777573207,"sku":"9781484282359","price":44.99,"currency_code":"GBP","in_stock":true}],"url":"https:\/\/bookcurl.com\/products\/cloud-attack-vectors-9781484282359","provider":"Book Curl","version":"1.0","type":"link"}