Security News > 2023 > March > The Biden administration may eye CSPs to improve security, but the real caveat emptor? Secure thyself

Recent reports suggest the administration has concerns that major cloud service providers constitute a massive threat surface - one through which an attacker could disrupt public and private infrastructure and services.

Chris Dorman, chief technology officer of cloud incident response firm Cado Security, said major cloud service providers are already the best at managing and securing cloud infrastructure.

While the Biden administration said it would work with cloud and internet infrastructure providers to identify "Malicious use of U.S. infrastructure, share reports of malicious use with the government" and "Make it easier for victims to report abuse of these systems and more difficult for malicious actors to gain access to these resources in the first place," doing so could pose challenges.

"Taking your 50 terabytes in an S3 storage bucket and accidentally making it publicly available is potentially shooting yourself in the foot. So, cloud security posture management solutions are useful. And consumers of cloud services need to have good processes in order."

Check Point Security's 2022 Cloud Security report listed leading threats to cloud security.

A leading cause of cloud data breaches, organizations' cloud security posture management strategies are inadequate for protecting their cloud-based infrastructure from misconfigurations.

News URL

https://www.techrepublic.com/article/biden-admin-cloud-cybersecurity/