CIO Influence
CIO Influence News Cloud Networking

1 in 5 Data Breaches Are Caused by Misconfigured Clouds

1 in 5 Data Breaches Are Caused by Misconfigured Clouds
NordVPN Teams: Over half of IT organizations experience challenges with securing cloud data

To accommodate remote work and improve efficiency, 85% of IT organizations are considering or already using the public cloud. However, with some of their most crucial data still located within the corporate perimeter, NetOps must come up with new ways to achieve seamless integration. While the transition to the cloud itself is tricky, protecting the assets inside it is a different problem.

A study by Ponemon and IBM indicates that misconfigured cloud servers are responsible for 19% of data breaches and increased their average cost by half a m**************. Despite relying on multi-cloud infrastructure, 52% of organizations find it challenging to secure data stored in the public cloud.

Recommended ITech News: Altair Future.AI Global Event to Demonstrate How Artificial Intelligence and Analytics Accelerate Digital Transformation

Companies accept these shortcomings, as cloud computing increases effectiveness and visibility over complex networks. Particularly when most employees are working remotely and accessing resources from dispersed locations. Cloud computing also takes the workload from on-premise networks that often have limited capabilities to support mobile workforces.

“Disperse edge computing is an opportunity for small and medium IT companies because robust corporate infrastructure is no longer needed for effective and secure collaboration. Enterprises also reduce additional costs by following Bring-Your-Own-Device (BYOD) policies, but that requires thorough risk-mitigation strategy based on authentication,” says Juta Gurinaviciute, the Chief Technology Officer at NordVPN Teams.

Software and IT companies secure their remote workers’ end-point devices, cloud apps, servers, and on-premise data centers by implementing Zero Trust frameworks.

Recommended ITech News: Liberty Global and Digital Colony to Launch JV to Develop Edge Data Centers in Europe

Instead of focusing on user-to-network connectivity, it secures user-to-application gateways. A software developer doesn’t need to enter the network to access cloud resources from their home office, allowing admins to limit the actions each employee can perform within the system.

IP whitelisting limits access and increases visibility
IP whitelisting (also known as allow list) is another step to reduce potential cyberattack surface area. It is an approved list of trusted IP addresses that can enter the network or reach resources within it. Usually, administrators assign static and dedicated IP addresses to all employee devices to control access to high-risk software development environments.

“The software and IT industry is particularly vulnerable to cyberthreats, as most of their operations are digital. Applications that are still in development rarely have proper security measures. Malicious users can access wider networks through them, compromising data, stealing assets and affecting operations,” says NordVPN Teams expert.

Organizations can minimize the surface area by whitelisting particular IPs, but manually setting this up can outprice the benefits for smaller companies. They can stay resilient by implementing easily scalable third-party solutions that come with a centralized control panel. Admins can add new devices with ease, providing access to contractors or freelancers working with particular projects.

Recommended ITech News: Foursquare Acquires Geospatial Analytics and Visualizations Platform Unfolded

Related posts

CrowdStrike Adds Strategic Partners to CrowdXDR Alliance and Expands Falcon XDR Capabilities to Supercharge Threat Detection

Connectbase Launches The Connected World Express to Address Channel Sales Use Cases

Vertica Announces General Availability of Vertica Accelerator

CIO Influence News Desk