BotNet News

Your source for Online Security News

Cloud Security

Cloud Security focuses on protecting business content in the cloud, including sensitive information and intellectual property. It protects against data leaks, malware and other cyber threats that can be transmitted through and stored in cloud applications.

While many enterprises opt to have a private cloud, individual businesses and small to medium businesses are more likely to work with public cloud providers that are shared with other subscribers. This multitenancy presents some unique challenges in regards to cloud security, especially as it relates to the potential of one breach to expose all customers’ data. To mitigate this, companies must ensure that their cloud providers have strong break-glass and backup strategies in place. They also need to be aware of any limitations or restrictions imposed by their cloud vendors, which may affect their ability to safeguard and retrieve their data in the event of a disaster.

Another concern is that the use of cloud applications often requires access to privileged credentials, such as administrative passwords or API keys. These can pose a significant risk to cloud environments when not managed properly, as attackers can easily guess these credentials and exploit them to gain access to sensitive data. To avoid this, companies should leverage password managers to allow users to create unique passwords for each application or service they use and to encrypt all privileged credentials.

Finally, when considering a cloud security solution, be sure to choose a tool that can monitor and detect threats in the environment, including any misconfigurations of cloud applications and services. For example, solutions like Halo from CloudPassage constantly scans data storage repositories for unauthorized access and provides the visibility needed to detect and respond quickly to threats in the cloud.