Category Archives: cybersecurity

Spike in cloud account compromises and email forwarding rule abuse detected

Cybersecurity firm Red Canary has unveiled its sixth annual Threat Detection Report, examining the trends, threats, and adversary techniques that organisations ought to prioritise in the coming months and years. The report tracks MITRE ATT&CK techniques that adversaries abuse most frequently throughout the year, and two new and notable entries soared to the top 10… Read more »

The post Spike in cloud account compromises and email forwarding rule abuse detected appeared first on Cloud Computing News.

Why companies continue to struggle with cloud visibility – and code vulnerabilities

A new report from the Cloud Security Alliance (CSA) has thrown up more difficulties organisations are facing in security remediation – and achieving visibility from code to cloud. The report, produced in collaboration with security firm Dazz, polled just over 2,000 IT and security professionals to better understand current cloud environments and security tools. The… Read more »

The post Why companies continue to struggle with cloud visibility – and code vulnerabilities appeared first on Cloud Computing News.

Rik Chorus, Kyndryl: How to defend against evolving cybersecurity threats

Rik Chorus, Kyndryl’s director of security and resiliency & networking and edge, Benelux, discusses how the firm is helping organisation’s navigate their way through an ever-changing tech and business landscape. Can you tell us a little bit about Kyndryl and what you do at the company? There are a few things that I think are… Read more »

The post Rik Chorus, Kyndryl: How to defend against evolving cybersecurity threats appeared first on Cloud Computing News.

Encryption demand soars as 60% of business data kept on the cloud

The demand for cloud encryption is estimated to increase at a CAGR of 30.9% from 2022-2032. The market valuation is projected to increase by US$ 2.4 Bn by 2022 & US$ 34.8 Bn by 2032. This is according to Future Markets Insight (FMI), which says organisations are investing in the modernisation of data storage strategy… Read more »

The post Encryption demand soars as 60% of business data kept on the cloud appeared first on Cloud Computing News.

Views from the field: Shifting left in enterprise cloud security  

Stuart Green, cloud security architect at Check Point Software, explains how businesses can mitigate cybersecurity risks.   As of 2022, 94% of enterprises use cloud services. Confidence in the cloud has grown over the last 12 to 18 months, with 35% of organizations having more than 50% of their workloads in the cloud. While businesses… Read more »

The post Views from the field: Shifting left in enterprise cloud security   appeared first on Cloud Computing News.

James Todd, KPMG: On automation and machine learning as the future of security 

James Todd, SecOps director at KPMG, describes his role as a merging of SecOps, security architecture, and cloud security. It is a particularly interesting crossing point with regard to automation.  “It’s at that intersection of the cloud environment, being very much aligned to deploying everything as code,” says Todd. “A lot of automation is a… Read more »

The post James Todd, KPMG: On automation and machine learning as the future of security  appeared first on Cloud Computing News.

Infoblox bolsters off-premise security capabilities

Security CCTV camera in office buildingInfoblox has released its DNS Firewall as a service, extending its services to roaming devices off-premise, which will be available towards the end of 2016.

The new service will offer protection to customers roaming outside the corporate perimeter, as well as within, by offering a single pane of glass for protection from malware and cyberattacks. The cloud-service works through providing actionable network intelligence to customers to strengthen their operational and security postures. It also delivers unified reporting and single-policy configuration, which Infoblox claims are capabilities not available through purely cloud-based DNS services.

“Enterprise networks do not have the luxury of being walled gardens any more, not with employees bringing their own devices and accessing data from everywhere,” said Scott Fulton, EVP of Products at Infoblox. “Infoblox DNS Firewall as a service helps our customers by providing the same industry leading protection for on- and off-premise devices, helping organisations to build enterprise networks that are more available, secure, and smart.”

The offerings capitalize on the threat intelligence technology which Infoblox acquired through buying IID in February 2016. IID was acquired for approximately $45 million as a means for Infoblox to increase its threat detection capabilities, as a means to differentiate Infoblox from other DDI vendors.

IID’s cloud-based platform for threat intelligence federation allows customers to share threat intelligence, which has been highlighted as another potential growth area for Infoblox, though this is a competitive marketplace already. Companies such as iSight already have a healthy presence in the threat intelligence market segment, though Infoblox does have a number of partnerships with these vendors, inherited through recent acquisitions, which the team does not expect to change moving forward.

IBM makes cyber threat data available as a cloud security service

IBM is launching a cybersecurity cloud service

IBM is throwing its hat into the cybersecurity ring

IBM has unveiled a cloud-based cybersecurity service which includes hundreds of terabytes of raw aggregated threat intelligence data, which can be expanded upon by users that sign up to use the service.

At about 700TB, IBM’s X-Force Exchange service is being pitched by the firm as one of the largest and most complete catalogues of cybersecurity vulnerability data in the world.

The threat information is based on over 25 billion web pages and images collected from a network of over 270 million endpoints, and will also include real-time data provided by others on the service (so effectively, the more people join, the more robust the service gets).

“The IBM X-Force Exchange platform will foster collaboration on a scale necessary to counter the rapidly rising and sophisticated threats that companies are facing from cybercriminals,” said Brendan Hannigan, general manager, IBM Security.

“We’re taking the lead by opening up our own deep and global network of cyberthreat research, customers, technologies and experts. By inviting the industry to join our efforts and share their own intelligence, we’re aiming to accelerate the formation of the networks and relationships we need to fight hackers,” Hannigan said.

Last year IBM made a number of acquisitions to bolster end-point and cloud security (CrossIdeas, Lighthouse) and adding cyber threat detection to the mix creates a nicely rounded security portfolio. But the move also put it in direct competition with a wide range of managed security service providers that have been playing in this space for years and going after the same verticals (oil & gas, financial service, retail, media, etc.), so it will be interesting to see how IBM differentiates itself.