Skip to content
NGTEdu Logo

NGTEdu

A PRODUCT OF NGTECH.CO.IN

NGTEdu Logo

NGTEdu

  • Home
  • Cyber Attacks
  • Malware
  • Vulnerabilities
  • Data Breach
  • Home
  • Data Breach
  • Cloud-Based Storage Misconfigurations – Understanding the Security Risks and Responses
  • Data Breach
  • Malware

Cloud-Based Storage Misconfigurations – Understanding the Security Risks and Responses

5 years ago Chris Hudson
Cloud-Based Storage Misconfigurations – Understanding the Security Risks and Responses

Misconfigurations remain one of the most common risks in the technology world. Simply telling organisations to “fix” this problem, however, is not as easy as it might first seem because there’s a myriad of technologies at play in modern infrastructure deployments. All of this results in a complicated mix of hardening approaches for each system.

What is key, then, is to identify where hardening is required and then consider the methodology for each area. Even something as simple as data storage requires detailed planning to ensure that security controls provide robust protection not just on Day One but for all time regardless of where that data is.

Understanding the Cloud’s Security Risks

For starters, it’s important to consider that both private and public (cloud-hosted) networks are susceptible to the risks associated with these compliance objectives. For data stored in the cloud, we continue to see inappropriate access controls applied to online storage, resulting in leaked data as well as organisations storing credentials in insecure ways.

Unfortunately, these problems are not unique to the online world. Incorrect permissions are an easy way for insider threats to become more costly by exposing more data. And storage of credentials in insecure documents or scripts remains a common way for outsiders to find new ways to expand their access. Ultimately, many of the same risks exist for data regardless of where it is.

There have been improvements in this area in recent years, but whilst “security by default” is a common approach for IaaS providers, these systems are not fool-proof and are even sometimes ignored, which further complicates things. And for those who are still deploying physical or virtual machines in their own data center, there is a worrying lack of default hardening applied to templated server builds that results in each deployment requiring additional security effort each and every time a new machine is provisioned.

How to Respond to These Risks

Preventing these issues in the first place is therefore incredibly important. If thieves know you leave the vault door open all the time, you’re going to be facing a constant barrage of new attackers exploiting your error. But once you’ve closed the door, ensuring it stays that way remains just as important. A one-off security incident might result in you fixing your exposed data stores, but it’s only through regularly auditing the protection you put in place (and ensuring no new weaknesses creep into the system) that you can stay secure.

Automating checking therefore remains key. You cannot rely on a once-a-year check when it only takes moments for attackers to extract vital data or place spyware that allows them to keep an eye on and then circumvent any other security countermeasures you put in place. Automation should also ideally be smart enough to automatically account for new configurations. There’s little point checking the same set of servers or storage services when your organisation has expanded beyond these, leaving new areas of unprotected infrastructure.

Once you have automation in place, there is still a final piece in the puzzle – ensuring the automation is working. Countless organisations have been caught out by an out-of-date anti-virus pattern or inherited access control list that they had assumed was automatically managed. When things go wrong, alerts need to be generated and responded to promptly, and for that, there needs to be a standard process that should ensure you know how to respond to the most common scenarios quickly and easily.

With all of this in mind, your data protection model must be flexible enough to cover multiple system types. Integrating your authentication infrastructure and access request systems such that they provide a unified front- and back-end system to establish ownership and access to data can greatly simplify things here, too, reducing friction for end users and security administrators at the same time. Once established, it should permit automation and easy remediation strategies to be successful, too.

Security within Reach

A surprising number of organisations today don’t know where all there data is, much less have a unified model for managing access to it or a model to audit and rectify issues. But all these controls are within reach for most organisations. So what are you waiting for?

The post ” Cloud-Based Storage Misconfigurations – Understanding the Security Risks and Responses” appeared first on TripWire

Source:TripWire – Chris Hudson

Tags: Cloud, Goverment, Malware, TripWire

Continue Reading

Previous Mobile Adware Booms, Online Banks Become Prime Target for Attacks
Next Cybersecurity Challenges: Understanding the What, How and When of Change

More Stories

  • Cyber Attacks
  • Data Breach
  • Malware
  • Vulnerabilities

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

54 mins ago [email protected] (The Hacker News)
  • Cyber Attacks
  • Data Breach
  • Malware
  • Vulnerabilities

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users

12 hours ago [email protected] (The Hacker News)
  • Cyber Attacks
  • Data Breach
  • Vulnerabilities

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

13 hours ago [email protected] (The Hacker News)
  • Cyber Attacks
  • Data Breach

Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos

14 hours ago [email protected] (The Hacker News)
  • Critical Vulnerability
  • Cyber Attacks
  • Data Breach
  • Malware
  • Vulnerabilities

⚡ Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats

18 hours ago [email protected] (The Hacker News)
  • Critical Vulnerability
  • Cyber Attacks
  • Data Breach

Securing the Mid-Market Across the Complete Threat Lifecycle

18 hours ago [email protected] (The Hacker News)

Recent Posts

  • Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group
  • Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users
  • OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link
  • Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos
  • ⚡ Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats

Tags

Android APT Bug CERT Cloud Compliance Coronavirus COVID-19 Critical Severity Encryption Exploit Facebook Finance Google Google Chrome Goverment Hacker Hacker News High Severity Instagram iPhone Java Linux Low Severity Malware Medium Severity Microsoft Moderate Severity Mozzila Firefox Oracle Patch Tuesday Phishing Privacy QuickHeal Ransomware RAT Sim The Hacker News Threatpost TikTok TripWire VMWARE Vulnerability Whatsapp Zoom
Copyright © 2020 All rights reserved | NGTEdu.com
This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Read More here.Cookie settingsACCEPT
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT