Cloud Computing's "Notorious Nine" Risks for

Business: What's Up (and Down)

For 2013

The Cloud Security Alliance researches best practices and releases

reports on "The Notorious Nine”

cloud threats.

This year, the top threats are mostly due

sophisticated hacking (it’s big business now!) and

decreased company diligence.

On the other hand, threats related to stability

and more mature technology are down.

Overall, data in the cloud is now less secure, partly

due to the explosive growth of BYOD.

Here’s the “Notorious Nine” list for 2013:

#1 Data Breaches: Your data is infiltrated

because there's profit to be made from stealing it.

#2 Data Loss: This happens

by mistake (human error), on purpose (sabotage) or by an act of nature (such

as a hurricane).

#3 Account or Service Traffic Hijacking: The credentials of

someone on your team are stolen and used.

# 4 Insecure Interfaces and APIs:

Weak security in third-party technology allows

infiltration.

# 5 Denial of Service: Your customers can't access your services

because an attacker has overwhelmed your

system's resources.

# 6 Malicious insiders: A team member turns on

you.

# 7 Abuse of Cloud Services:

Your provider is affected by another tenant who is using the cloud you share for undesirable purposes.

# 8 Insufficient Due Diligence:

Your company is using the cloud in ways that put

your data at risk.

#9 Sharing Technology Vulnerabilities:

Your cloud provider's infrastructure isn’t handling isolation

requirements properly.

Want more details?You can read the

Leapfrog Services article and the Cloud Security

Alliance report.

Meantime...

Stay safe up there!SM

(LFS ID stuff)