Two vulnerabilities found in Microsoft Azure services could have allowed cybercriminals to take over cloud services according to a new report from Checkpoint.
Although public cloud adoption rates are high, many organizations are still hesitant to move business-critical workloads to the cloud for fear of security compromise. A big part of the problem is that cloud providers obfuscate visibility to their customers relative to the underlying network traffic and infrastructure. This means that cloud customers do not have the same visibility and awareness that they have when workloads are deployed on-premise. This visibility gap is an inhibitor to broader public cloud adoption. In response, cloud providers are beginning to offer paid products and services with SIEM-like functionality in an attempt to close that visibility gap. The challenge with this approach is that it creates yet another separate silo of data for end-users to manage. What is needed is for the cloud providers to export that data to tools like network traffic analysis so that customers can collect data centrally and correlate network visibility across their hybrid public and private cloud, and on-premise deployments.
Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics