Exploring specific security pain points with enterprise cloud adoption

While the enterprise push to public cloud continues apace, it does not hurt to hear of figures which puts the scope of the journey in perspective.

According to new figures from Ping Identity, only one in five enterprises polled said they have more than half of their IT infrastructure hosted in the public cloud. Three quarters (75%) in comparison have a hybrid approach.

Perhaps not surprisingly, the key aspect holding these organisations back is security. 43% of the 300 US-based respondents said it was the...

By James Bourne, 25 January 2019, 0 comments. Categories: Adoption, Enterprise, Security.

Do cryptographic keys belong in the cloud?

Thanks to the cloud, organisations of all sizes can enjoy scalability, ease of use, and significant savings by outsourcing hardware and software ownership and maintenance in multi-tenant environments. Medium-sized companies no longer have to pay to build their own infrastructure, which makes the cloud especially appealing to this market.

However, the cloud still suffers from security issues....

By Brian Jenkins, 24 January 2019, 0 comments. Categories: Data & Analytics, Security, Vulnerabilities.

Predicting the future of next-gen access and Zero Trust Security in 2019: Challenges ahead

Bottom line:  The most valuable catalyst all digital businesses need to continue growing in 2019 is a Zero Trust Security (ZTS) strategy based on Next-Gen Access (NGA) that scales to protect every access point to corporate data, recognising that identities are the new security perimeter.

The faster any digital business is growing, the more identities, devices and network endpoints proliferate. The most successful businesses of 2019 and beyond are actively creating entirely new digital business models today....

By Louis Columbus, 22 January 2019, 0 comments. Categories: Data & Analytics, Privacy, Security, Vulnerabilities.

New malware strain can evade and uninstall cloud security software, researchers warn

The good news: your organisation has finally gotten around to installing some top of the range cloud security tools. The bad news: malware has been developed which can evade detection from them.

The nefarious discovery from threat actor Rocke was made by Palo Alto Networks Unit 42, with the security researchers noting that it was ‘to the best of [their] knowledge the first malware family that developed the unique capability to target and...

By James Bourne, 18 January 2019, 0 comments. Categories: Blockchain, Infrastructure, Security, Vulnerabilities.

Enterprises more confident with cloud than ever – but still concern over security issues

Another year, another study on cloud adoption – and if it’s surprising statistics you want, you’ve come to the wrong place.

Yet this may be seen as a good thing. As the report released by NetEnrich shows, the numbers on infrastructure and public cloud usage for enterprise continues to tick over, while security remains vital and DevOps still has a long way to go to mass adoption.

By James Bourne, 17 January 2019, 0 comments. Categories: Containers, DevOps, Enterprise, Infrastructure, Research, Security.

Six best practices for increasing AWS security in a Zero Trust world

  • Amazon Web Services (AWS) reported $6.6B in revenue for Q3, 2018 and $18.2B for the first three fiscal quarters of 2018.
  • AWS revenue achieved an impressive 46% year-over-year net sales growth between Q3, 2017 and Q3, 2018 and 49% year-over-year growth for the first three quarters of the year.
  • AWS’ 34% market share is bigger than its next four competitors combined with the majority of customers taken from small-to-medium sized cloud operators according to 

By Louis Columbus, 15 January 2019, 0 comments. Categories: Amazon, Compliance, Infrastructure, Security.

Cloud Security Alliance: Cloud ERP making waves but caution persists around security

Once a major headache for organisations, enterprise resource planning (ERP) systems are now becoming easier to migrate to the cloud, according to a new study from the Cloud Security Alliance (CSA).

The findings, which appear in the research firm’s latest report, titled ‘The Impact of Cloud on ERP’, surveyed almost 200 enterprise-level C-suite executives. Two thirds (64%) of organisations polled are...

By James Bourne, 14 January 2019, 0 comments. Categories: Enterprise, ERP, Research, Security, Software.

Four cloud security predictions for 2019: Containerisation, load balancers, and more

The cloud is a vital part of any enterprise infrastructure. The convenience of having a database that can be accessed from any location has dramatically improved efficiency within workforces. While many companies had previously been afraid of making the move, as the open nature of the cloud makes it less secure than on-premise solutions, new advances in cloud security have vastly reduced the number of successful attacks. With 2019...

By Stephen Dallas, 08 January 2019, 0 comments. Categories: Compliance, Containers, Enterprise, Infrastructure, Security.

Farewell 2018, hello 2019: The last 12 months in cloud – and what’s on the horizon

2018 was yet another fascinating year when it came to cloud computing, along with the emerging technologies which complement and rely on the cloud.

As the ecosystem has matured and organisations’ confidence has increased, conversations have shifted gear accordingly. RightScale’s

By James Bourne, 02 January 2019, 0 comments. Categories: Amazon, Best Practice, Containers, Infrastructure, M&A, Security, Software.

You've got 99 problems when it comes to public cloud compliance – but cryptojacking may not be one

If cloud is part of the conversation for organisational digital change, then cloud security will forever be not far behind. According to new research from Unit 42, compliance needs to be stepped up, yet cryptojacking may be on the decline.

The company – the threat intelligence arm of Palo Alto Networks – put together analysis based on existing threats to cloud security over the second half of 2018, focusing on Amazon Web...

By James Bourne, 14 December 2018, 0 comments. Categories: Blockchain, Compliance, Data Management, Research, Security.

AWS launches new security offering which mitigates S3 misconfigurations – if customers get it right

Amazon Web Services (AWS) has announced extra steps to ensure customers’ S3 buckets don’t become misconfigured – but don’t assume responsibility has been taken away from the customer.

The new service, Amazon S3 Block Public Access, can work at the account level, on individual buckets, as well as future buckets created. Users can also block existing public access, or ensure public access is not available for...

By James Bourne, 20 November 2018, 0 comments. Categories: Amazon, Data Loss, Data Management, Security, Vulnerabilities.

Netskope secures $168m series F funding to further accelerate enterprise cloud security

Cloud access security broker (CASB) Netskope has announced the close of a series F funding round of $168.7 million (£130.5m) to ‘further cement [its] position as the leader in accelerating security transformation throughout the enterprise’, in the company’s words.

The funding round was led by existing investor Lightspeed Venture Partners – whose interests in the cloud security space have included

By James Bourne, 14 November 2018, 0 comments. Categories: Data & Analytics, Data Management, Economy, Security.

How to protect healthcare IoT devices in a Zero Trust world

  • Over 100 million healthcare IoT devices are installed worldwide today, growing to 161m by 2020, attaining a Compound Annual Growth Rate (CAGR) of 17.2% in just three years according to Statista.
  • Healthcare executives say privacy concerns (59%), legacy system integration (55%) and security concerns (54%) are the top three barriers holding back Internet of Things (IoT) adoption in healthcare organizations today according to the 

By Louis Columbus, 08 November 2018, 0 comments. Categories: Applications, Data & Analytics, Security, Software, Vulnerabilities.

Gartner’s latest Magic Quadrant shows the need for cloud access security brokers going forward

The role of the cloud access security broker (CASB) will become ever-more important in the context of organisational security.

According to analyst firm Gartner, through 2023 “at least 99%” of cloud security issues will be the fault of the customer. The notion of shared responsibility – one which regular readers of this publication may well be sick of hearing given its frequency – needs to be hammered...

By James Bourne, 05 November 2018, 0 comments. Categories: Infrastructure, Research, Security, Vulnerabilities.

Why it’s time to fight back against cyber risk to cloud computing and virtual machines

Cloud computing is now a primary driver of the world’s digital economy. Governments, large corporations and small businesses are increasingly implementing cloud-based infrastructures and solutions to store their sensitive data and manage their operations.

While the cloud offers lower costs, scalability and flexibility, it also expands a company’s risk profile exponentially. In fact, attackers are continually refining their techniques to take advantage of the millions of identical binary templates...

By Simon Hartley, 31 October 2018, 0 comments. Categories: Hacking, Security.

As more companies put sensitive data in the public cloud – so the security threats increase

More organisations are putting their sensitive data in the public cloud – so it comes as no surprise that cloud threats, and mistakes in SaaS, IaaS and PaaS implementation are at an all-time high.

That is the key finding from a new report by McAfee, which argues the old bugaboo of shared responsibility continues to kick in and give organisations a kick in the teeth when it comes to cloud security.

By James Bourne, 30 October 2018, 0 comments. Categories: Data & Analytics, Data Loss, Infrastructure, Research, Security, Vulnerabilities.

The key trends driving IT security-related revenues to $133.7 billion

Cybersecurity solutions demand has remained strong during 2018, as more CIOs and CTOs need to ensure that their digital transformation projects have a high degree of digital trust built-in. Data privacy-related legislation has also fuelled the market for expert professional services that are skilled in IT security compliance.

According to the latest global market study by International Data Corporation (IDC), worldwide spending on security-related hardware, software, and services is forecast to reach $133.7...

By David H Deans, 30 October 2018, 0 comments. Categories: Data & Analytics, Infrastructure, Research, Security.

How identity and access management is causing headaches in cloud security

Identity and access management (IAM) is seen as an important tool for determining who’s who in a nefarious cloud landscape – but organisations are struggling to get to grips with it, according to new research.

The latest Cloud Report from cloud access security broker (CASB) Netskope has revealed the majority of Center for Internet Security (CIS) benchmark violations occurring in Amazon Web Services (AWS) environments fall...

By James Bourne, 25 October 2018, 1 comment. Categories: Data & Analytics, Infrastructure, Research, Security.

Check Point Software acquires Dome9 to beef up multi-cloud options

Check Point Software, an Israel-based cyber security firm, has announced the acquisition of compatriot Dome9 – with multi-cloud capability once again proving key.

Dome9, which like Check Point is based in Tel Aviv, offers a SaaS platform which aims to visualise organisations’ security postures in the public cloud. Companies can have verifiable infrastructure security for every public cloud, including the behemoths of AWS, Azure and...

By James Bourne, 24 October 2018, 0 comments. Categories: Data Management, Security.