Security News

Human hacking - phishing attacks across all digital channels - has dramatically increased in 2021. "The cybersecurity industry has done a good job of protecting machines, but those efforts leave the most porous and vulnerable parts of any network - the humans using it - unprotected," said Patrick Harr, SlashNext CEO. "Today's hyper-targeted spear phishing attacks, coming at users from all digital channels, are simply not discernable to the human eye. Add to that the increasing number of attacks coming from legitimate infrastructure, and the reason phishing is the number one thing leading to disruptive ransomware attacks is obvious."

MEC buildouts are being carried out by a broad cross-section of edge stakeholders, and cloud providers) to deliver latency-sensitive edge network services. Beyond connectivity, MEC buildouts will also provide opportunities for organizations to host applications both on premises and in edge cloud sites.

A new version of a Linux crypto-mining malware previously used to target Docker containers in 2020 now focuses on new cloud service providers like the Huawei Cloud. The analysis of the new campaign comes from researchers at TrendMicro, who explains how the malware has evolved with new features while retaining its previous functionality.

Spending on compute and storage infrastructure products for cloud infrastructure, including dedicated and shared environments, decreased 2.4% year over year in the second quarter of 2021 to $16.8 billion, according to IDC. This decrease comes after six quarters of year-over-year growth, and most notably compares to the 39.1% annual growth seen by the market in 2Q20, when the world just entered the pandemic with the first wave of business and country closures causing a spike in investments in cloud services and infrastructure. Investments in non-cloud infrastructure increased 3.4% year over year in 2Q21 to $13.4 billion recovering from a 7.2% decline in 2Q20. Spending on shared cloud infrastructure decreasing too.

While there is a time and place for onboarding additional cloud security solutions, it can also be easy to fall prey to the shiny object syndrome surrounding emerging solutions that are created in response to new security threats. Before rushing to invest in a new solution remember that matching additional solutions to emerging threats in a one-to-one game of whack-a-mole is not a sustainable strategy.

The potential for cloud technologies to break down silos and enable more contextualized views of data is having a dramatic impact on enterprise investment priorities for operations. When asked to identify investment priorities for operations over the next five years, organizations ranked cloud highest, followed by wireless connectivity and artificial intelligence and machine learning, according to a recent Future of Operations survey from IDC. At the same time many enterprises have yet to move their operational data from on-premises to the cloud.

The IDC cloud security survey 2021 states that as many as 98% of companies were victims of a cloud data breach within the past 18 months. ImmuniWeb, a rapidly growing application security vendor that offers a variety of AI-driven products, has announced this week that its free Community Edition, running over 150,000 daily security tests, now has one more online tool - cloud security test.

81% of U.S.-based IT professionals believe that having remote workers has increased enterprise security challenges, while 74% acknowledge that their company's use of cloud solutions increased as a direct result of the COVID-19 pandemic, a ManageEngine report reveals. To that end, 53% of U.S. respondents learned new remote worker support skills and 52% said that their organizations' remote worker support teams have increased their use of cloud solutions in the last year.

Making the decision to implement a multi-cloud strategy is difficult. From the decision to pursue a multi-cloud journey to defining the requirements to laying the foundation to identifying and deploying applications and services to the multi-cloud environment, the process requires a solid strategy and flawless execution to succeed, say experts at Taos.

Google has apologized for a wave of emails warning Google Cloud Platform, Firebase, or API customers that their accounts may be suspended for a past due balance. Users began receiving these emails on September 22nd, which warned that their account was "Past due or does not have valid payment information".