September 20, 2017
Almost 50% of CISOs say that they are very very anxious about the security implications of cloud. And recent data breaches support their anxiety. The main concern for a CISO is that his data is not in his control. Even after securing data with a lot of sophisticated tools, if the cloud platform is not secure enough the data is at risk.
If one thinks last year’s breach of over three billion records was bad enough, we have had enough breaches this year too. And some are massive and serious.
In a recent security breach of AWS S3, around 2,000 buckets were left open to the public as those cloud storage accounts were not set to private. About 126 billion files were available for anyone to access. Here the fault lies with the person who left it open though S3 accounts by default are set to private by AWS.
Recently a lot of breaches have happened due to this misconfiguration of S3 buckets.
The American media giant Viacom left one gigabyte of sensitive files publicly exposed, according to researchers from the cybersecurity firm UpGuard. The exposed files included Viacom’s secret cloud keys — information that a hacker could have used to take control of the company’s cloud servers.
© Copyright 2024 Agni Information Systems (P) Ltd.