Cyber Defense eMagazine October Edition for 2021

More documents

Recommendations

Info

Misconfigurations Are the Biggest Threat to Cloud Security, Period. By eSentire There is no doubt that cloud adoption is accelerating at an exponential rate. Whether it’s for business collaboration or to store critical data assets, organizations are increasingly relying on the cloud–– in fact, recent reports have found that 62% of organizations utilize at least two cloud platforms. As a result of this acceleration, we have also seen a multitude of data breaches occurring due to misconfigurations in the cloud, which occur because of improper settings being used when architecting and deploying services within the cloud platform. This leads to an expanded attack surface for cybercriminals to access any data stored within the cloud environment and increases the risk of a cyber attack. In fact, a survey conducted by Fugue also found that 73% of the organizations reported having 10+ incidents per day due to misconfigurations, 36% reported having 100+ incidents per day, and 10% suffered from 500+ incidents per day. Unfortunately, misconfigurations are no small threat–many of the biggest data breaches associated with cloud-based infrastructure have boiled down to some sort of a misconfiguration. For example, the 2019 Cyber Defense eMagazine – October 2021 Edition 96 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
CapitalOne data breach occurred as a result of a misconfigured Web Application Firewall (WAF) that’s part of Amazon Web Services (AWS), which compromised the records of 100M+ customers. It’s no surprise that this has led the National Security Agency (NSA) to further declare that misconfigurations are easily the biggest (and most prevalent) cloud vulnerability that organizations are currently facing. So, why do these misconfigurations happen in the first place? Ultimately, there are three primary drivers: • Lack of experience: Unlike on-prem environments, cloud services are notoriously easy to deploy and set up by internal teams. So, if your organization has an inexperienced employee who doesn’t know much about proper cloud configuration, they are likely to miss key elements that must be enabled to maintain security. • Strained resources: Depending on the use of the cloud platform, many configurations are reliant on simple checkboxes that can easily be overlooked by overworked employees who wear multiple hats. Missed critical details such as this, can lead to unintentionally exposing sensitive data to the public. • Inadequate cloud migration strategy: Often, organizations still rooted in on-prem environments don’t have the in-house resources with the cloud-specific experience necessary to properly rearchitect their environment as part of the cloud migration strategy. This means that many organizations simply “lift and shift” any data or services on-prem without considering how to redeploy them in the cloud. Simplifying Cloud Security with Cloud Security Posture Management (CSPM) To reduce the risk associated with misconfigurations, organizations need to combine preventative measures with ongoing threat monitoring. This means leveraging a cloud security provider that can support multi-cloud environments with cloud security posture management. Cloud security posture management is integral in eliminating cloud misconfigurations since it actively monitors the cloud infrastructure and assesses the configurations in real-time against best practice frameworks such as the CIS benchmarks. Of course, each cloud provider has their own CIS benchmark, which is a list of policies and protocols that dictate how assets and services should be configured in the cloud. It should be noted that there may be business reasons to deviate from specific line items on the CIS benchmark. Therefore, a strong cloud security posture management solution will accomplish two things: • Report any deviation from ‘good’ and notify you when your cloud resources are online and offline, since it’s a critical signal of malicious activity. • Assess your cloud infrastructure against the configuration requirements of certain regulatory frameworks, such as PCI or HIPAA, to ensure that your cloud assets are configured to maintain regulatory compliance. If you’re currently in the process of assessing various multi-cloud security providers, ask yourself: Cyber Defense eMagazine – October 2021 Edition 97 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
The Top 6 Cyber Attacks Of 2021 So
Page 3 and 4:
Protecting SMBs from Current Cybers
Page 5 and 6:
@CYBERDEFENSEMAG CYBER DEFENSE eMAG
Page 7 and 8:
Cyber Defense eMagazine - October 2
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
#2 Florida’s water system A hacke
Page 37 and 38:
Raise Cyber Security Awareness: Whe
Page 39 and 40:
Source Code Protection Market Do we
Page 41 and 42:
of script administration, no backup
Page 43 and 44:
to steal “the keys to the kingdom
Page 45 and 46: Part 1 - Using a Proxy Server - BUR
Page 47 and 48: Below we have an example of interce
Page 49 and 50: Having the device UUID and being co
Page 51 and 52: In the second part, we demonstrate
Page 53 and 54: Currently, we are bound to use tech
Page 55 and 56: You can be a hacker too! Remember,
Page 57 and 58: The Brutal Reality of Brute Force A
Page 59 and 60: Multi-factor authentication is one
Page 61 and 62: Why outdated software poses cyberse
Page 63 and 64: About the Author Roman Davydov is a
Page 65 and 66: What data security risks do communi
Page 67 and 68: Is the Edge Really Secure? By Cheta
Page 69 and 70: Or, let’s spend some time discuss
Page 71 and 72: accessible. Different agencies have
Page 73 and 74: Making Sure the Lights Don’t Go O
Page 75 and 76: Gösgen’s IT Security Officer, Fr
Page 77 and 78: MFA works a few different ways, but
Page 79 and 80: Get Ahead of the Game: Packet Captu
Page 81 and 82: investigations and the ability to t
Page 83 and 84: Thousands of Fortinet VPN Account C
Page 85 and 86: and operating costs. FIDO2 is the s
Page 87 and 88: As ports have been steadily ramping
Page 89 and 90: About the Author Working at the int
Page 91 and 92: Today’s Threat Landscape The 2021
Page 93 and 94: Thwarting Today’s Phishing Attack
Page 95: Security is Everyone’s Job Employ
Page 99 and 100: About eSentire eSentire Inc., is th
Page 101 and 102: Complying with regulations Security
Page 103: Cyber Defense eMagazine - October 2
Page 106 and 107: Cyber Defense eMagazine - October 2
Page 115 and 116: Free Monthly Cyber Defense eMagazin
show all

Cyber Defense eMagazine October Edition for 2021

Create successful ePaper yourself

Delete template?

Save as template?