Operational guardrails for End User Developed Applications Know More| Fostering business success through a decade of innovation Know More| ISO certifications validate excellence and sustainability at Simplex Know More| Delivering projects at the pace of business with DevOps Know More| Ensuring business continuity with DRaaS adoption Know More| Delivering value at scale with Intelligent Automation Know More| A harmonious blend of innovation and integration represents the new Simplex identity Know More| Infrastructure Modernisation: Lift, Shift, and Optimise Know More| Securing remote work with Microsoft 365 Know More| Learn. Contribute. Grow. Know More| Moving legacy workloads to Microsoft Azure with Database Modernisation Know More| At SimpleXConnect 2023, experts chart the course for the future of AI innovation Know More| SimpleXConnect 2023: Future of AI Innovation Know More| Streamlining teamwork to boost productivity with Microsoft Teams Know More| Enabling secure remote work with Microsoft 365 Know More| Employees aren’t the weakest link in IT Security Know More| How SMBs can reduce costs and manage risks with Microsoft 365 Know More| Reduce the costs and complexity of data backup and disaster recovery Know More| Using cloud for a robust disaster recovery strategy Know More| In any M&A conversation, one size doesn’t fit all Know More| How HR departments can help improve operational excellence Know More| Operational resilience in financial sector Know More| The ubiquitous End User Developed Applications need an intervention Know More| Building business process transformation with Power Automate Know More| Businesses need to prepare themselves against data loss and data theft Know More| Nine years of Simplex Services, and the next evolution Know More| Lifecycle of operational resilience Know More| Building operational resilience should be on the agenda of every business Know More| Should we fix our IT or scrap it? Know More| A growing volume of cyberattacks point to the need for proactive vulnerability management Know More| SimpleXConnect 2022: Future-proofing Digital Workplace Know More| Announcing a partnership with Novigo Solutions for expanding our footprint across Europe Know More| Rise in ransomware attacks points to an increasingly challenging threat environment Know More| How can SMBs build business continuity and disaster recovery capabilities Know More| Digital complexity and cybersecurity emerging as top risks for organisations Know More| Cloud adoption is an off-the-shelf solution for all IT needs of SMBs Know More| The growth of DRaaS adoption in modern enterprises Know More| Introducing our Environment Policy statement Know More| Eight years, and a new normal Know More| Augmenting IT modernisation initiatives with a successful automation strategy Know More| Enabling business transformation with our Digital Workplace offerings Know More| Microsoft Teams can bring teams together wherever they work Know More| Unravelling 2022: Assertions in technology Know More| Hybrid work model is no longer a theory, but a strategic move Know More| Introducing our new managed offering: Vulnerability Management as a Service Know More| Is Windows 365 the right option for your hybrid work needs? Know More| Azure Virtual Desktop and the move to hybrid Know More| Backup isn’t mission critical, until it becomes mission critical Know More| Our free and non-obligatory advisory for assessing IT health of your organisation Know More| Windows 11: A guidance for IT professionals Know More| Building Business Continuity with a Hybrid Workplace Know More| Creating a positive workplace culture in an organisation Know More| Talent Density: A must have for an organisation that strives for excellence Know More| Simplex Services awarded ‘Player of the Year’ by Vuzion Know More| How does Red Hat Ansible Automation Platform increase efficiency? Know More| Seven years and counting Know More| [SimpleXConnect] The Autonomous Kubernetes with CAST AI Know More| Building and operating automation at scale with Red Hat Ansible Automation Platform Know More| Multicloud – It’s imminent Know More| [SimpleXConnect] Leveraging all the benefits of multi-cloud in one simple setup Know More| How does Red Hat Ansible Automation Platform increase efficiency of innovation? Know More| [SimpleXConnect] Driving Efficiency with Automation Know More| Keep the lights On and keep them Green Know More| Simplex awarded G-Cloud framework agreement by Crown Commercial Service Know More| Microsoft 365 migration: A step-by-step adoption plan Know More| [SimpleXConnect] Making technology ready for redefining workplaces Know More| Announcing SimpleXConnect 2020 Know More| 3 pro tips to get more out of Microsoft Teams meetings Know More| Important Questions To Ask Your IT Service Provider Know More| Time For Businesses To Move To A Cloud-Based Telephone System Know More| What is Infrastructure Modernisation service? Know More| ShopSimple: Bringing hyperlocal marketplace to the UK Know More| Privacy and security in Microsoft Teams Know More| Challenges for CIOs and CISOs in the times of COVID-19 Know More| Help contain COVID-19: Work Remotely Know More| How will Brexit impact the UK Tech and IT industry? Know More| What are the benefits of a multicloud strategy? Know More| “Little missteps, big breaches”: The security landscape for cloud computing in 2020 Know More| Here’s all you need to know about Windows 7 End of Life Know More| Multicloud – A Reality Know More|

“Little missteps, big breaches”: The security landscape for cloud computing in 2020

January 24, 2020June 10, 2022 Team Simplex

The SophosLabs 2020 Threat Report explores some of the major changes in the threat landscape that emerged over the last year in cloud computing. These will continue to impact cybersecurity in 2020.

The very thing that makes the cloud a great platform also creates some of its greatest security challenges. The past decade has seen the emergence of the cloud as the platform for storing and processing large volumes of data. But along the way, some businesses have found that pouring all their information into a virtualised data store led to inadvertent data breaches. Sometimes in the most public and damaging ways possible.

According to Andy Miller, senior director of global public cloud at Sophos, flexibility is the name of the game in cloud computing. With very little effort, it is possible to toggle on or off resources as needed. This makes it easy for businesses to scale up computing power to suit the needs of their clients or customers. But when it comes to securing the cloud, all that flexibility and ease can come back to bite you later.

Also, if an organisation’s applications residing on the cloud are compromised, the security threats can trickle down to employees’ and other end-user devices like POS machines. Travelex, the foreign exchange service, has asked staff to return their laptops for evaluation and has instructed employees to use their personal mobile phones as it recovers operations after the ‘Sodinokibi’ malware attack. The incident also disrupted employees’ ability to access the company’s HR system.

In 2020, Miller believes, little missteps will lead to big breaches in the cloud.

The greatest vulnerability for cloud computing is simple misconfigurations. This isn’t usually deliberate since the platforms themselves are so complex. It is often difficult to understand the ramifications or consequences of toggling a specific setting.

Large data breaches involving misconfigured cloud computing storage have hit companies like Netflix and Ford. A cloud backup provider used by them inadvertently left a massive storage repository – data lake – open to the world.

Share on: