(Page 2 of 2)
One Will Get You Three
Respondents estimated that every 1 percent increase in the use of cloud services will result in a 3 percent higher probability of a data breach, meaning an organization using 100 cloud services would only need to add 25 more to increase the likelihood of a data breach by 75 percent.
More than two-thirds (69 percent) of respondents believed that their organizations are not proactive in assessing information that is too sensitive to be stored in the cloud. Sixty-two percent of respondents indicated that the cloud services their companies are using are not thoroughly vetted for security before deployment.
Almost three-quarters (72 percent) of respondents believed their cloud services providers would not notify them immediately if they had data breaches involving the loss or theft of their intellectual property or business confidential information. And 71 percent believed they would not receive immediate notifications following breaches involving the loss or theft of customer data.
The IT and security professionals surveyed said they believed 45 percent of all software applications used by their organizations are in the cloud, but IT did not have visiblity into exactly half (22.5 percent) of these applications. In addition, although the respondents estimated that 36 percent of business critical apps are based in the cloud, they said IT lacked visibility into nearly half of them.
Posted: 2014-06-13 @ 8:01am PT
WittZi nails it. The benefits to cloud-based software far outweigh any cons and the fact is that there's no security related concerns to the cloud that don't apply to on premise solutions as well.
What this article should highlight instead is the need to hold third-party software to a higher security standard, and any cloud vendor your business leverages will fall into this category.
Chris Wysopal from Veracode explains this in a recent blog post here: http://blog.veracode.com/2014/06/cloud-or-not-third-party-software-adds-unnecessary-risk/
Posted: 2014-06-10 @ 1:55am PT
I think that this is the opionion of dinosaurs. Cloud hosting companies are often (note, almost certainly!) specialists at securing their infrastructure against attack, versus a (frquently) inept internal IT department that would admittedly struggle in a similar environment.
I dont have time to find the article, but if you look at cloud data breaches in 2012 vs internally hosted data breaches, the internal systems are breached significantly more frequently.
The study is based on people's views; people often with a vested interest to keep their systems in-house. I think that this is a very misleading study indeed.
Posted: 2014-06-06 @ 3:49am PT
Interesting analysis, cyber crime is increasing and its time organizations adopt stronger measures to check security breaches. Regular checks on security systems and a requirements analysis should be a part of the business plan to check these threats. I work for McGladrey and there's a whitepaper on our website on cyber security which will interest readers . @ “Two common Web application attacks illustrate security concerns” @ http://bit.ly/1c0f35M
Posted: 2014-06-05 @ 1:46pm PT
Really? Keeping Data on someone else's computer, some American's computer, in the post Edward Snowden / NSA era?
Storage space is cheap people. Put a server in the basement, not in the cloud.