Hidden Traps in Cloud Security: Auth, Secrets, Supply Chain, and Safe Defaults
Cloud-native applications promise speed and scalability, but their security is often undermined by overlooked pitfalls. In this episode, we dissect real-world vulnerabilities in authentication, secrets management, supply chain dependencies, and configuration defaults. Our guest, a seasoned cloud security architect, shares hard-won lessons from production incidents, explaining how teams can spot weak points before attackers do. Listeners will learn why 'secure by default' is rarely a reality, what goes wrong with OAuth flows, how secret sprawl happens, and why dependency attacks are on the rise. Expect practical advice, anonymized case studies, and actionable strategies to improve your app’s security posture. Whether you’re a developer, architect, or SRE, this episode will make you rethink the hidden risks in your cloud deployments.