Skip to main content
search
Articles

What are the major violations in AWS services?

By November 23, 2018#!31Mon, 06 May 2019 12:37:20 -0300p2031#31Mon, 06 May 2019 12:37:20 -0300p-12America/Sao_Paulo3131America/Sao_Paulox31 06pm31pm-31Mon, 06 May 2019 12:37:20 -0300p12America/Sao_Paulo3131America/Sao_Paulox312019Mon, 06 May 2019 12:37:20 -03003712375pmMonday=904#!31Mon, 06 May 2019 12:37:20 -0300pAmerica/Sao_Paulo5#May 6th, 2019#!31Mon, 06 May 2019 12:37:20 -0300p2031#/31Mon, 06 May 2019 12:37:20 -0300p-12America/Sao_Paulo3131America/Sao_Paulox31#!31Mon, 06 May 2019 12:37:20 -0300pAmerica/Sao_Paulo5#No Comments
October 31, 2018 - Copywriting - ComputerWorld

 

 

 THE Netskope, a provider of cloud security solutions, released the Netskope Cloud Report on corporate cloud.

 The study looked at the Internet Security Reference Center for Amazon Web Services (AWS), and according to the survey, 71.5% of the breaches occurred with Identity and Access Management (IAM). ) to AWS.

 The report notes that most high-severity corporate breaches have been attributed to a misconfiguration of features such as Amazon S3 buckets, highlighting the weaknesses of many security strategies in IaaS and PaaS. While many companies have control over cloud services such as multifactor authentication and single-access solutions, the migration of these controls to cloud infrastructure such as AWS often goes unnoticed. So by failing to address these gaps, companies end up exposing themselves to significant security risks, warns Netskope.

 Still according to Netskope, many of the violations detected in IAM involve instance rules, role-based access control, and access to password or feature policy requirements & #8211; simple fixes that companies can easily solve even without an external security solution.

 

 Other violations

 The report also includes other breach data, including the areas of Monitoring (19%), Network (5.9%), and Registry (3.6%). In the Resources category, Amazon EC2 leads with 66.2% reported violations, followed by CloudTrail (15.2%), S3 (10.9%), IAM (4.5%), and others (3.2%). Of all records, 86.3% were considered to be of medium severity, 9.1% high, 4% critical, and 0.6% low.

 Netskope founder and CEO Sanjay Beri comments that as companies increasingly take a multi-cloud approach, IT teams must continually assess the security of their public cloud infrastructure and be aware of data entering and leaving these services. . & #8220; Businesses should consider using the same security profiles, policies, and controls in all services & #8211; SaaS, IaaS and web - with the goal of reducing overhead and complexity as cloud service usage increases, ”he said.

 

 

About [SAFEWAY] 

 THE [SAFEWAY] is a widely recognized company as a provider of premium information security and cybersecurity solutions. From its extensive portfolio, we highlight several solutions, including those based on platforms:

  • Archer da RSA Security, considered by the institutes Gartnerand Forrester and by the market itself, the most complete process integration solution for Governance, Risk Management, Compliance and Business Continuity Management;
  • [SAFEWAY]Security Tower, supported by IBM Qradar (Watson technology), tailored to each organization in its security and cyber defense management needs.
  •  And others, involving technologies ImpervaThalesBeyondTrustManlyWatchGuard Technologies

Tags:

Leave a Reply

Close Menu