The smart attack era is upon us. Learn how AI, machine learning, IT process automation and a bit of common sense will help our cloud security. -/-
A big focus for IT pros in the coming year should surround the automation of security reporting and auditing. With a growing list of cloud services, at times spread across multiple providers, it can become quite cumbersome to keep track of security reporting. Leveraging IT process automation, tools like Microsoft Secure Score, and creating efficient and automated review workflows should be at the top of all our lists next year. Having this information readily available and simple to review can save time and allow for faster responses to emerging cloud security threats.-/-
The biggest threat to user security still remains to be social engineering. Phishing emails have seen a resurgence, along with other attacks that rely on the social aspect of our day to day work. End users should focus on being more vigilant with suspicious emails, calls, texts, etc.
Cloud security faced significant challenges in 2018, as did other technological areas involving confidential data. According to an article by cloud data security provider CloudCodes, failure to adopt updated cloud storage security elements led to a number of security breaches.
The article referenced a security report, which determined the following issues responsible for cloud security failures:
- Insufficient identity, access, and credential management
- Abuse and nefarious usage of cloud services
- Insecure graphical user interface and APIs
- Shared technology vulnerabilities
- Sudden information leakage
- Advanced persistent threats
- Insufficient due diligence
- Cloud account hijacking
- Denial of service attack
- Malicious insider attacks
- System vulnerabilities