Incidents document what actually went wrong in real-world cloud environments. These are not theoretical risks - they are confirmed failures, breaches and exposure events that fuel SkySiege’s cloud testing.
Expect:
Our Incident knowledgeb ase answers the question: “Why do we need a secure and operational cloud?”
Here’s why…
BleepingComputer reports that Stryker needed roughly three weeks to return to a broadly similar level of operation after attackers allegedly stole 50TB of data and wiped nearly 80,000 devices. Even …
BleepingComputer reports that Aura confirmed unauthorised access to nearly 900,000 records after a voice phishing attack against an employee. Aura says the exposed dataset came from a marketing tool …
Socket, Wiz, and Aqua Security report that attackers compromised Trivy’s build pipeline and GitHub Actions, distributing trojanized binaries and workflows that harvested sensitive credentials across …
SkySiege tests A-S3-4, A-S3-5, A-S3-6, A-S3-7, A-S3-8 and A-S3-9 all focus on public access blocks and the quality of S3 Bucket Policies. The reasoning for this is simple - Public Access Blocks and …
Test A-R53-10 reviews DKIM records to determine if the DKIM key is of a suitable size. As the DKIM key is part of a asymetric keypair we can infer certain properties of the corresponding private key, …
Test A-R53-8 specifically looks for Domains that are due to expire within the next 90 days that do not have any form of auto renewal. We reference the risk for expired domains to get squatted whereby …
