Compliance remains the key cloud security challenge, according to CipherCloud report

(c)iStock.com/magann

Almost two thirds of organisations in a CipherCloud survey on cloud data protection say compliance and auditing privacy is the biggest security challenge associated with cloud computing.

CipherCloud, which has released its inaugural “Global Cloud Data Security Report”, found a number of interesting findings in the research, and the challenges associated with data security for Global 2000 companies.

Compliance and data protection concerns continue to remain the top barriers for...

By James Bourne, 26 March 2015, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Data Sovereignty, Security.

Opinion: Sorry, Europe: Data localisation is not the killer app for privacy

(c)iStock.com/maxkabakov

By Kenneth N. Rashbaum, Esq.

This blog post is for informational and educational purposes only. Any legal information provided in this post should not be relied upon as legal advice. It is not intended to create, and does not create, an attorney-client relationship and readers should not act upon the information presented without first seeking legal counsel.

Edward Snowden has unleashed a torrent of activity in the name of data security and...

By LogicWorks, 24 March 2015, 0 comments. Categories: Data & Analytics, Data Centres, Data Management, Privacy, Security.

Dropbox Android SDK vulnerability revealed, cloud storage provider praised for response

(c)iStock.com/funky-data

A major vulnerability in the Dropbox SDK for Android has been revealed by IBM Security, whereby attackers can connect applications on mobile devices to a Dropbox account controlled by the attacker.

The vuln has since been fixed, with IBM praising Dropbox for its response to the issue; the company acknowledged receipt of the disclosure within six minutes, confirmed the vulnerability within the day, and issued a patch within four days.

It’s slightly better than the flaw in Moonpig’s API,...

By James Bourne, 12 March 2015, 0 comments. Categories: Security, Storage, Vulnerabilities.

Organisations are aggressively adopting cloud – but can’t find the right security roadmap

(c)iStock.con/yvon52

90% of users polled in the LinkedIn Information Security group claim they are either very or moderately concerned about public cloud security.

The survey, sponsored by CloudPassage, aimed to give a comprehensive examination of current security mindsets from a more than 250,000 respondent base with a broad section of company sizes, experience and cloud mindset.

Here are the key stats:

  • 71% of respondents are either in planning stages, actively implementing or in production with cloud environments. Hybrid cloud deployments are most common with 7 out...

By James Bourne, 10 March 2015, 0 comments. Categories: Architecture, Infrastructure, Security, Virtualisation.

The cloud service provider and security vulnerabilities: Three steps to prevention

(c)iStock.com/cherezoff

IT departments worldwide face a dizzying array of security threats, whether they manage traditional or NextGen/cloud based environments. IT security experts report some very frightening statics:

  • Approximately 400,000 new malware instances are recognised daily
  • New kinds of malware are gaining prominence including Ransomware, Scareware, and banking malware.
  • New attack vectors include public cloud, software-as-a-service provider environments, third party services providers and mobile devices.
  • Reports of politically or cause sponsored terrorism and corporate espionage are on the rise...

By David Auslander, 09 March 2015, 0 comments. Categories: Data & Analytics, Data Management, Security, Vulnerabilities.

Financial firms accessing cloud more readily yet roadblocks still remain, say CSA

(c)iStock.com/eve_eve01genesis

61% of financial businesses are developing a cloud strategy within their organisation, according to a report from the Cloud Security Alliance (CSA).

The paper, in conjunction with CipherCloud and interviewing over 100 global participants across the financial sector, found that businesses are slowly but surely moving into the cloud, with a mix of leveraging private and public cloud the optimum strategy.

The findings came out of the Financial Services Working Group (FSWG), an...

By James Bourne, 06 March 2015, 2 comments. Categories: Adoption, Hybrid, Infrastructure, Security.

Shining a light on shadow IT - and how to ensure you get it right

(c)iStock.com/jrwasserman

The nature of work is evolving; employees are mobile and cloud-enabled, free to work anywhere from almost any device. In response to this shift, the BYOD trend has emerged stronger than ever. Coupled with this is the growth of employees desiring more accessible applications. However, these factors have undoubtedly contributed to the emergence of shadow IT, which is creating a problem for many IT departments.

Applications such as Dropbox are increasingly being used by employees for business...

By Angelo di Ventura, 25 February 2015, 0 comments. Categories: Applications, SaaS , Security, Software, Vulnerabilities.

Federation of Small Businesses warns of continued security fears for SMBs in the cloud

(c)iStock.com/rvlsoft

The Federation of Small Businesses (FSB) has found nearly two fifths of small businesses are sceptical about the benefits of cloud technology when compared against security risks.

The survey, which was conducted in association with Verve and polled over 1200 SMB professionals, found 59% were using cloud services of some description, and of those, the biggest worry was a risk of data being lost, stolen or damaged, cited by 61% of respondents.

55% were worried about not being able to...

By James Bourne, 20 February 2015, 0 comments. Categories: Data & Analytics, Data Loss, Data Management, Security.

Healthcare data security: Is cloud encryption alone enough?

By Kenneth N. Rashbaum, Esq. and Liberty McAteer, Esqs.

This blog post is for informational and educational purposes only. Any legal information provided in this post should not be relied upon as legal advice. It is not intended to create, and does not create, an attorney-client relationship and readers should not act upon the information presented without first seeking legal counsel.

What if the data of 80 million Anthem subscribers were encrypted at rest? And...

By LogicWorks, 16 February 2015, 1 comment. Categories: Data & Analytics, Data Loss, Data Management, Security, Vulnerabilities.

A matter of trust: The importance of backups in cloud computing

(c)iStock.com/kjekol

Strong security is a foundational element of every public, private and hybrid cloud implementation and will be a top concern for all businesses as part of a macro trend taking grip in 2015. Research shows that 90 percent of the world’s data has been generated in the past two years – calling into question not only data storage, but also data safety.

When it comes to security in the cloud, disaster recovery (DR), backup and...

By Chad Buzzard, 30 January 2015, 0 comments. Categories: Data & Analytics, Data Loss, Disaster Recovery, Security.