Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Major Public Cloud Breach Predicted For Coming Year

LogLogic : 16 December, 2011  (Technical Article)
Guy Churchward of LogLogic explains his prediction that in 2012 the public cloud security infrastructure will suffer a major security breach
Major Public Cloud Breach Predicted For Coming Year
“Public cloud services were developed and launched at lightning speed. This year in particular has seen an influx of new entrants and the amount of information cloud service providers now hold on customers is immense – with more data is being collected every second.

From my experience, many of the ‘household named’ cloud services are used to protecting ‘non-critical’ data however, the acceptance of cloud and relative trust by consumers has increased to the point that the data criticality has increased faster than their security measures. It is here that I think some cloud providers could be open to attack as they’ve not been (from my experience thus far) as stringent with their security, audit trails in particular, as they could be. When you’re driving fast you generally ignore the rearview mirror.  Such trails are essential for tracking hacker activity if they do get it – finding out the how, where and what information they obtained.

I’d go as far as saying that some providers have been pretty complacent about their security – a position they perhaps need to revisit – we all saw what happened with the PlayStation breach earlier this year – it can and it will happen.

It is this complacency and lack of control that I expect will lead to the first major external security attack early next year in the cloud. It probably won’t be a malicious attack, more likely a statement to prove and publicly acknowledge that it can be done. This will set in motion the needed refresh of security measures (kicking policy, compliance and security cloud practices into overdrive) across the industry as consumers demand that their data is better protected. We may even see consumers insist on their providers meeting the ISO 27002 standard in response to such an attack, which guarantees a certain level of cover and service.

In reference to the private cloud, the enterprise market has been much more cautious as to how they use these types of service and what data they share. Their traditional soft and slow approach will serve them well as they try to ensure that the appropriate security solutions and protocols are in place to better safeguard their business. Don’t get me wrong however, a breach will eventually happen in the private cloud too – it’s not about ‘if’, it’s about ‘when’, but since the enterprise community moving at full bore in cloud is small, the targets are likely to be the softer underbelly of the consumer public cloud service sites first.”
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo