cloud computing's notorious nine-
TRANSCRIPT
Cloud Computing's "Notorious Nine" Risks for
Business: What's Up (and Down)
For 2013
The Cloud Security Alliance researches best practices and releases
reports on "The Notorious Nine”
cloud threats.
This year, the top threats are mostly due
sophisticated hacking (it’s big business now!) and
decreased company diligence.
On the other hand, threats related to stability
and more mature technology are down.
Overall, data in the cloud is now less secure, partly
due to the explosive growth of BYOD.
Here’s the “Notorious Nine” list for 2013:
#1 Data Breaches: Your data is infiltrated
because there's profit to be made from stealing it.
#2 Data Loss: This happens
by mistake (human error), on purpose (sabotage) or by an act of nature (such
as a hurricane).
#3 Account or Service Traffic Hijacking: The credentials of
someone on your team are stolen and used.
# 4 Insecure Interfaces and APIs:
Weak security in third-party technology allows
infiltration.
# 5 Denial of Service: Your customers can't access your services
because an attacker has overwhelmed your
system's resources.
# 6 Malicious insiders: A team member turns on
you.
# 7 Abuse of Cloud Services:
Your provider is affected by another tenant who is using the cloud you share for undesirable purposes.
# 8 Insufficient Due Diligence:
Your company is using the cloud in ways that put
your data at risk.
#9 Sharing Technology Vulnerabilities:
Your cloud provider's infrastructure isn’t handling isolation
requirements properly.
Want more details?You can read the
Leapfrog Services article and the Cloud Security
Alliance report.
Meantime...
Stay safe up there!SM
(LFS ID stuff)