Story image

Enterprise cloud deployments being exploited by cybercriminals

20 Feb 2019

A new report from Check Point Software Technologies has revealed there is a lot of uncertainty surrounding cloud security breaches - which are on the rise.

According to the cybersecurity specialist’s third instalment of its 2019 Security Report, cybercriminals are increasingly targeting the weakest and least protected points in an organisation’s IT infrastructure - the public cloud and mobile deployments.

The report reveals the key cyber-attack trends used by criminals to target enterprise cloud and mobile estates during 2018. It also reveals enterprise IT and security teams’ key security concerns about these deployments.

It shows there is certainly cause for alarm, as almost one in five organisations around the world had a cloud security incident in the past year with the most common incident types being data leaks/breaches, account hijacks, and malware infections.

IT professionals of the report were then asked to list what they perceive to be the top four public cloud security threats, with misconfiguration of cloud platforms leading to data loss or breaches being the most prominent with 62 percent, followed by unauthorised access to cloud resources with 55 percent, insecure interfaces and APIS with 50 percent, and finally hijacking of accounts or data traffic 47 percent.

However, by no means does this show that IT professionals are aware of the swelling issue. A staggering 30 percent still believe security is the responsibility of the cloud service provider. Check Point says this concering finding negates recommendations that cloud security should follow the mutual responsibility model, in which security is shared by both the cloud provider and the customer.

According to Check Point, a single misconfigured cloud workload or storage instance is all it takes to open the gates to a potential attack with huge repercussions.

Hardware chip vulnerabilities that can be found in the systems that make up cloud infrastructure - like Meltdown, Spectre, and Foreshadow - are also exposing data to cybercriminals.

Another possible driver of this targeting of cloud infrastructure is because revenue from other instances like cryptojacking and ransomware continue to reduce.

“The third instalment of our 2019 Security Report shows just how vulnerable organisations are to attacks targeting their cloud and mobile estates because there is a lack of awareness of the threats they face and how to mitigate them,” says Check Point Software Technologies Cloud Product Line head Zohar Alon.

As nearly 20 percent of organisations have experienced a cloud incident in the past year, it’s clear that criminals are looking to exploit these security gaps.”

On the mobile deployment side, the majority (59) percent of IT professionals are not using mobile threat defences capable of detecting leading threats including mobile malware, fake or malicious apps, man-in-the-middle attacks and system vulnerabilities.

This is perhaps because just 9 percent consider threats on mobile devices a significant security risk, despite Check Point asserting malware can propagate from unprotected mobile devices to organisations’ cloud- or on-premise networks, exploiting this weak link in enterprise security defences.

Privacy: The real cost of “free” mobile apps
Sales of location targeted advertising, based on location data provided by apps, is set to reach $30 billion by 2020.
Myth-busting assumptions about identity governance - SailPoint
The identity governance space has evolved and matured over the past 10 years, changing with the world around it.
Forrester names Crowdstrike leader in incident response
The report provides an in-depth evaluation of the top 15 IR service providers across 11 criteria.
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Ensign and IronNet partner to create cyber analytics capabilities
The Singapore-based joint venture will form a Cyber Analytics Center for Excellence focused on securing regional enterprises from sophisticated cyber threats.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.