10 Major Cloud Storage Security Slip-Ups (So Far) this Year

10 Major Cloud Storage Security Slip-Ups (So Far) this YearAccenture is the latest in a string of major companies to expose sensitive cloud data this year, following Verizon, Deloitte, and Dow Jones.1 of 11

(Image: Posteriori via Shutterstock)
One of many concerning security trends from 2017 is the accidental exposure of cloud data via misconfigured Simple Storage Service (S3) buckets from Amazon Web Services. This year has been marked with several data leaks from major organizations, most recently Accenture.
“While this incident is very unfortunate, it’s not very surprising,” says RedLock cofounder and CEO Varun Badhwar of the Accenture leak.
Research from RedLock CSI (Cloud Security Intelligence) shows 53% of businesses using cloud storage services like AWS S3 have inadvertently exposed one or more of the service to the public Internet, up from 40% earlier in May. Researchers also found 38% of businesses have experienced the potential compromise of an administrative account in their public cloud.
The trend underscores a dangerous problem common among businesses of all sizes, as well as the third parties with which they entrust sensitive information. Many don’t take steps to properly configure their cloud storage accounts or don’t take the time to verify the security practices of third-party firms. As a result, they compromise customers’ data.
移动设备安全快速指南
“While you can offshore or outsource tasks and functions, you can never outsource the risks,” said Chris Pierson, chief security officer at Viewpost, after the exposure of voter data from the Republican National Committee (RNC) via third-party misconfiguration back in June.
“As such, every company that deals in sensitive or valuable data should have an information assurance program that risk rates their vendors, monitors them for security and other factors, and provides governance to the company regarding their third party and the risk appetite set by the company.”
垃圾邮件制造者开始向社交网站转移,因为他们发现电子邮件越来越不赚钱了。
Here, in no particular order, we round up ten major AWS leaks from this year, affecting everyone from Chicago voters to US government employees with Top Secret security clearance.
大量消费者技术的快速商用使公司系统和数据的接入无处不在,传统的边界安全已经模糊,移动终端安全成为信息安全运营工作重点。

猜您喜欢

阿科力:深耕新材料 创造新未来——无锡阿科力科技股份有限公司…
安全口号标语的效力和宣教突破
网络安全法宣传视频系列001《网络安全法》背景知识
访高校电竞专业:学生忙学习吃饭叫外卖
MEMOK MRMOVIETIMES
提升安全管理绩效的不二方法