Cloud Security Cybersecurity Bomb: – Kaspersky Lab says that more than half of cloud-based businesses companies literally do not know whether their important data is on local storage or in the cloud, creating a ticking cybersecurity bomb. The main reason for cybersecurity bomb is cloud storage confusion.
Build a slide decks, pitches, and clear presentation? all these are big takeaways: –
- Yes, 45% of cloud-using or cloud-based enterprises really lacks a clear understanding of their data storage location. which means they do not know if it is really secure or not. -Kaspersky Lab, 2017
- More than half of SMBs and enterprises suffered data theft through a third-party cloud hosting, and most do not realize that those providers are not taking responsibility for data theft. -Kaspersky Lab, 2017
Latest report from Kaspersky Lab:- It is calling world attention about a growing problem that is known as “cloud zoo:”. A morass of data that large businesses companies simply can’t wrap their IT departments around them.
Without understand and clarity as to the status and locations of their user data, or full control over the existence of data, many business companies are facing a cybersecurity landscapes about which they can not be sure of. Around 39% of SMB and 45% of the enterprises said that they do not know where their data actually exist, and thus they do not have any knowledge of its security and integrity.
With 80% of businesses companies using at least one of the cloud solution for their data. The cloud zoo is a growing concern for every enterprise whether it is small or big. Yes, there is a large adoption of online digital solutions. Which is climbing towards near 99% for every business. Many companies actually need and wants to be aware of every bit of their data.
Who is really responsible for the cloud security?
Kaspersky also points out that the growth of every cloud puts up the question who is responsible for data security? Many Businesses think it is their cloud providers who are responsible but in reality, they are not the one who is responsible.
“Cloud-based business is not responsible and there are only service level agreements. Which state that the service providers are only ‘security’ and service availability’ of their cloud infrastructure”. Which directly means they are not responsible for the data security and loss of the data. This is what Kaspersky said in their report. “Means DDoS attacks or Ransomware attacks which affects data within the cloud, for example, are the responsibility of the customer, not the cloud service providers.”
more than 49% of SMBs and 45% of enterprises have customer data and also the employee information. which is easily stolen by them due to a third-party cloud storage breach. All those businesses have agreed and joined into an agreement similar to the one in mentioned above statement. They do not have anyone to hold accountable for them.
Yes, more than Seven out of 10 SaaS and cloud-utilizing businesses companies have no plan in place to deal with their security issues like the one we are talking about. Many of these firms also said they haven’t bothered to test the compliance credentials of their cloud business partners.
Training the zookeepers is what business cloud look like
Yes, The business cloud truly and definitely looks like a zoo and cloud providers are like zookeepers. Kaspersky’s numbers are accurate about all these stuff. But that does not mean that the situation cannot be tamed about them.
Kaspersky gives several suggestions for getting a handle on cloud security as it continues to become more and more essential to business:
- Do You Really Know what files are living and where, after implementing a cloud ecosystem for your business visibility? Do you have a clear map and understanding of all the services you using? Who is actually responsible for each of them and what they contain? and what is their purpose?
- Every part of the cloud-based systems you are using, is whether hosted, hybrid or public. You should actually have security issues. And you should take security measures in the situation that treat it just like local file storage.
- Before implementing any business in the cloud you should have a security plan for it. In the place for the eventual breach of vendors. It is not a matter of what will happen to your data—it is a matter of when it will happen what you will do.
- You should Implement a solid access control policy to keep it safe. And you should know who has the real ability to use it and what cloud services are.
- If anything possible I will say put cloud services behind a single sign-on. Password management platform is also useful for it. Users should only be able to gain access to it if they have already certified their identity with that service plan.