BSides SF: SaaS, cloud assets vulnerable to identity-based ransomware attacks

Paul WagenseilMarch 28, 2026

It's easy to mount ransomware attacks upon SaaS and cloud assets, a researcher said at the BSides SF 2026 hacker conference.

RESOURCES

Data Security
Your DLP can’t stop a smartphone: The data-leak crisis no one talks about
Governance, Risk and Compliance
Building institutional capacity: Why AI-augmented security is the new standard
Automated penetration testing
Why traditional VAPT is falling behind in the age of AI-built software
Identity
Thwarting AI-powered attacks: How identity management can help
Application security
Hard to handle: Securing AI-generated code and the AI agents that write it

PODCASTS

AI/ML
Scam Baiting, AI, and the New Grift Economy, Part 2 – Rinoa Poison – SWN #567
AI/ML
Scanning The Internet with Linux Tools – PSW #919
Asset Management
Say Easy, Do Hard – Crypto-Agility – BSW #440
AI/ML
Scam Baiting, AI, and the New Grift Economy, Part 1 – Rinoa Poison – SWN #566
Application security
Why Proactive Security Is Far Better Than Patching – Erik Nost – ASW #375

FEATURED

Perspectives Spotlight: Expert Insights

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

A giant sandworm appears over a desert sand dune.

RSAC

Wormsign, RSAC 2026: More auto-updating supply-chain attacks on the way

Paul WagenseilMarch 28, 2026

The Shai-Hulud worms that exploited automatic updates in open-source software repositories may be only the beginning, two researchers said at RSAC 2026.