Thales: For Data Breaches, Cloud Assets are Biggest Cybersecurity Headache

Thales cloud security study shows that 79% of organizations have more than one cloud provider and 75% of companies said they store at least 40% of their sensitive data in the cloud.
The post Thales: For Data Breaches, Cloud Assets are Biggest Cybersecu… Continue reading Thales: For Data Breaches, Cloud Assets are Biggest Cybersecurity Headache

IBM joins other tech giants and removes Russian state controlled network from its cloud service

An IBM spokesperson said it was “unaware” of its cloud platform’s involvement, and took “steps” to make sure RT content was available via its services

The post IBM joins other tech giants and removes Russian state controlled network from its cloud service appeared first on CyberScoop.

Continue reading IBM joins other tech giants and removes Russian state controlled network from its cloud service

SolarWinds hackers kept busy in the year since the seminal hack, Mandiant finds

Hackers associated with the SolarWinds supply chain compromise have been busy in the year since that attack was revealed, compromising multiple cloud solution companies with the goal of stealing data relevant to Russian interests and finding routes to additional victims, new research reveals. Findings published Monday by a team of analysts at Mandiant collate previous observations and analysis — along with the efforts of “hundreds of consultants, analysts and reverse engineers — to paint a picture of potentially distinct groups working alongside or within a more established Russian intelligence hacking group known as Nobelium, a name given to the group by Microsoft. The group is also known as Cozy Bear. The U.S. government formally blamed the Russian government for the hack on SolarWinds, a federal contractor that, when breached as far back as January 2019, provided a path to compromising nine government agencies — including the departments of Treasury, Homeland […]

The post SolarWinds hackers kept busy in the year since the seminal hack, Mandiant finds appeared first on CyberScoop.

Continue reading SolarWinds hackers kept busy in the year since the seminal hack, Mandiant finds

Hyperfocused Security for the Cloud

The cloud is the future and the future has arrived. Gartner predicts the worldwide public cloud service market will grow from $182.4 billion in 2018 to $331.2 billion in 2022, representing an annual growth rate of 12.6%. Gartner also expects that by t… Continue reading Hyperfocused Security for the Cloud

HIPAA Guidelines & Cloud Service Providers

Let’s talk about HIPAA guidelines and how they relate to cloud service providers. Recently, a new cyber security recommendation report for Health and Human Services (HHS) was released by the…
The post HIPAA Guidelines & Cloud Service Provid… Continue reading HIPAA Guidelines & Cloud Service Providers

GDPR will change how companies work with cloud providers

One of the bigger stipulations in GDPR is that third-party service providers, including companies who run the ever-ubiquitous cloud, will also be responsible for following the correct protocols when it comes to protecting EU citizen data. Yet just as companies keep throwing everything into the cloud, we are seeing errors in the way they safeguard personally identifiable data. If you have been following the work of Chris Vickery, you know how easily these errors can be found. Vickery, ‎director of cyber risk research for California-based Upguard, has been finding misconfigured cloud instances all over the internet. Just in the past year, Vickery identified these openly discoverable instances associated with a Florida credit monitoring firm, media behemoth Viacom, and even at the Department of Defense. Each finding had enough PII to keep privacy officers sleepless for weeks. While they were all based in America, Vickery recently came across a similar breach at French marketing firm Octoly, which caters […]

The post GDPR will change how companies work with cloud providers appeared first on Cyberscoop.

Continue reading GDPR will change how companies work with cloud providers