Security News > 2020 > August > Misconfigured cloud storage services are commonplace in 93% of deployments

Misconfigured cloud storage services are commonplace in 93% of deployments
2020-08-06 04:30

"While the adoption of cloud native infrastructure such as containers, serverless, and servicemesh is fueling innovation, misconfigurations are becoming commonplace and creating serious risk exposure for organizations," said Om Moolchandani, CTO, Accurics.

"As cloud infrastructure becomes increasingly programmable, we believe that the most effective defense is to codify security into development pipelines and enforce it throughout the lifecycle of the infrastructure. The receptiveness of the developer community toward assuming more security responsibility has been encouraging and a step in the right direction."

Misconfigured cloud storage services are commonplace in a stunning 93% of the cloud deployments analyzed, and most also have at least one network exposure where a security group is left wide open.

As organizations embrace Infrastructure as Code to define and manage cloud-native infrastructure, codifying security into development pipelines becomes possible and can significantly reduce the attack surface before cloud infrastructure is provisioned.

The new report makes the case for establishing the IaC as a baseline to maintain risk posture after cloud infrastructure is provisioned.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/Ll7I3RLA3eQ/