Marriott reported another data breach: Why cyber risk assessment is important

Marriott International — the multinational hospitality company behind the third-largest hotel brand in the world — reported a major data breach on March 31 2020, marking its second major data breach in the last two years. This data breach is expected to leak the information of 5.2 million guests worldwide.

“Marriott said Tuesday approximately 5.2 million guests worldwide may have been affected. The information taken may have included names, addresses, phone numbers, birthdays, loyalty information for...

AWS makes Amazon Detective generally available for greater security awareness

Amazon Web Services (AWS) has announced the general availability of Amazon Detective, a new offering which aims to help customers remediate security issues across their AWS workloads more easily.

Amazon Detective, which was launched in preview at re:Invent last year, automatically collects log data from a customer's resources and uses machine learning and statistical analysis to build interactive visualisations which customers can use to deduce security anomalies.

Sebastien Stormacq, Amazon senior developer advocate,...

By James Bourne, 01 April 2020, 0 comments. Categories: Amazon, Data Management, Security, Vulnerabilities.

Realising the impact of unsecured container deployments: A guide

A recently published report by StackRox on the state of containers and Kubernetes security has revealed the statistics related to security concerns in data centres with containerised workloads. 94% of respondents out of 540 IT and security professionals who participated in the survey had experienced security incidents in the last 12 months. Misconfigurations and human errors were the...

By Sagar Nangare, 20 March 2020, 0 comments. Categories: Containers, Data Centres, Developers, Kubernetes, Security, Vulnerabilities.

Five key takeaways from RSA Conference 2020: Cloud SIEM, Zero Trust, API-based security, and more

Bottom line: Passwordless authentication, endpoint security, cloud-native SIEM platforms, and new API-based data security technologies were the most interesting tech developments, while keynotes focusing on election security, industrial control systems’ vulnerabilities and the persistent threat of state-sponsored ransomware dominated panel discussion.

This year’s RSA Conference was held February 24 to 28 in San Francisco’s Moscone Center, attracting more than 36,000 attendees, 704 speakers, and 658...

Cloud complexity and ‘terrifying’ IoT means organisations’ asset visibility is worsening – report

As security best practice continues to be a battle between organisations closing the gap of hackers who stay one step ahead, a new report from cybersecurity asset management provider Axonius has argued the complexity of cloud infrastructure means companies are ‘rapidly’ losing sight of their asset landscape.

The study, put together by Enterprise Strategy Group (ESG) and which polled 200 North America-based IT and...

By James Bourne, 11 March 2020, 0 comments. Categories: Applications, Infrastructure, Research, Security, Software.

A day in the trenches with IT operations: How to create a more seamless practice

Traditionally, IT operators are responsible for ‘keeping the lights on’ in an IT organisation. This sounds simple, but the reality is harsh, with much complexity behind the scenes. Furthermore, digital transformation trends are quickly changing the IT operations responsibility from ‘keeping the lights on’ to ‘keeping the business competitive’.

Google Cloud bolsters security offerings at RSA – as Thales report warns of more breaches

Google Cloud has beefed up its security offerings to include greater threat detection, response integration, and online fraud prevention.

The news, announced at the RSA Conference in San Francisco, focused predominantly on enterprise security product Chronicle, which was ‘acquired’ by Google Cloud last year having been a bet of the...

By James Bourne, 25 February 2020, 0 comments. Categories: Data Loss, Data Management, Google, Infrastructure, Security, Vulnerabilities.

Human error and misconfigurations primary source of Kubernetes security snafus, report says

StackRox, a provider of cloud-native, container and Kubernetes security, warned in its previous report that the security implications for Kubernetes were beginning to spill over to adoption – and the release of its updated winter study have proved the company right.

The paper, the winter edition of its State of Container and Kubernetes Security Report, was put together alongside 451 Research and polled more than 500 industry...

By James Bourne, 21 February 2020, 0 comments. Categories: Containers, Data Loss, Developers, Kubernetes, Legal, Platform, Research, Security, Vulnerabilities.

Security versus productivity: Exploring the double-edged sword of the cloud

Adopting cloud technologies has become a common strategy among organisations across all sectors taking the road towards digital transformation. The benefits are evident: businesses that maximise all that the cloud has to offer often see a significant improvement in productivity.

However, the journey is not without its stumbling blocks and...

By Iain Shearman, 20 February 2020, 1 comment. Categories: Adoption, Infrastructure, Migration, Security.

How financial services can stay secure in the cloud: A guide

It was only a few years ago that an air of trepidation surrounded the cloud. However, in the present day, there is no question that having got through what Gartner termed a 'phase of disillusionment’, retail financial services firms see the immense value that cloud can bring. What’s more, with the implementation of the second Payment Services Directive (PSD2), the rise of fintech competitors and the emergence of blockchain technologies, many banks are...

By Chris Hill, 18 February 2020, 0 comments. Categories: Blockchain, Data & Analytics, Data Management, Infrastructure, Security, Software.

Spotting the elephant in the room: Why cloud will not burst colo’s bubble just yet

When it comes to the future demand for data centre colocation services, it would be easy to assume there’s a large elephant in the room – in the shape of a large cloud ready to consume all before it.  

From what we are seeing, however, alongside our cloud provider hosting services and in line with market forecasts, this is far from actual reality. The signs are that colocation can look forward to a vibrant...

By Simon Bearne, 11 February 2020, 0 comments. Categories: Data Centres, Data Management, Enterprise, Infrastructure, Security.

Netskope secures $340m in funding at $3bn valuation to further cloud security mission

Cloud security provider Netskope has announced the closure of a $340 million (£263m) investment on a valuation of almost $3 billion.

The move represents the seventh funding round for the Santa Clara-based company, taking its total funding to more than $740m. Netskope’s most recent funding was a series F round

By James Bourne, 07 February 2020, 0 comments. Categories: Data & Analytics, Data Management, Economy, Security, Vulnerabilities.

The top 10 cybersecurity companies to watch in 2020: How AI and ML is a key differentiator

  • Worldwide spending on information security and risk management systems will reach $131bn in 2020, increasing to $174bn in 2022 approximately $50bn will be dedicated to protecting the endpoint according to Gartner’s latest information security and risk management forecast
  • Cloud security platform and application sales are predicted to grow from $636m in 2020 to...

By Louis Columbus, 05 February 2020, 0 comments. Categories: Data & Analytics, Data Management, Security, Software, Vulnerabilities.

More sensitive data moves to the enterprise cloud – but the security risk widens with it

Enterprises continue to feed their clouds with increasingly sensitive information, yet according to McAfee’s latest report the security issues are building alongside this trend.

The study, titled ‘Enterprise Supernova: The Data Dispersion Cloud Adoption and Risk Report’, polled 1,000 enterprises across 11 countries, as well as logging anonymous data from 30 million enterprise cloud users.

By James Bourne, 28 January 2020, 0 comments. Categories: Data & Analytics, Enterprise, Research, SaaS , Security, Software.

CloudKnox raises $12 million in funding to further continuous cloud security mission

CloudKnox, a provider of identity authorisation for hybrid and multi-cloud environments, has secured $12 million (£9.17m) in a funding round to accelerate product and go-to-market plans.

The company has a cloud security offering based around continuous decision making, monitoring, adapting and responding to identity and access management (IAM) risks in real-time. Its intriguingly-named Privilege Creep Index (PCI) as part of its...

By James Bourne, 24 January 2020, 0 comments. Categories: Data & Analytics, Data Management, Platform, Security.

Google Cloud unveils premium support offering to further woo enterprise customers

Google Cloud continues to push its wares for an enterprise base with the launch of a premium support offering for enterprise and mission-critical requirements.

The service builds upon current offerings, of providing technical account managers and 15-minute SLOs (service level operations). Any companies with premium support will have their cases handled directly by the best of the best – or ‘context-aware...

By James Bourne, 16 January 2020, 0 comments. Categories: Enterprise, Google, Infrastructure, Monitoring, Security.

Cloud infrastructure trends: Usage continues to rise – with AWS-VMware workloads soaring in parallel

85% of organisations expect to have the majority of their workloads cloud-based by the end of 2020, according to a new study from AllCloud.

The study, which polled more than 150 IT decision makers at organisations where at least 300 employees were using cloud infrastructure, found seven in 10 respondents already ran at least half of their workloads on the cloud.

When it came to...

By James Bourne, 16 January 2020, 0 comments. Categories: Amazon, Architecture, Infrastructure, Research, Security.

Securing distributed clouds with an integrated approach: A guide

As digital innovation and resulting transformation increase, organisations also face the rise of traffic volumes from end user and IoT devices, SaaS applications and data from employees, consumers, and partners. As a result, many big data and large-scale applications simply outpace the centralised data centre infrastructure and the IT teams who have to manage and maintain distributed clouds.

By Lior Cohen, 15 January 2020, 0 comments. Categories: Applications, Architecture, Best Practice, Data & Analytics, Hybrid, Security, Software.

What will drive 2020 in cloud governance? In a hybrid world, a solid strategy is key

Now that we are a few weeks into 2020, we should consider what lies ahead in the ever-evolving world of cloud governance. What seems certain is that when it comes to IT governance there is still the same need to balance the benefits of agility and speed which come from decentralisation, against key business risks be they security and/or cost management.

In fact, what is meant by cloud governance really depends on where you sit...

By Jay Chapel, 13 January 2020, 0 comments. Categories: Compliance, Infrastructure, Monitoring, Security.