• Tech News
    • Games
    • Pc & Laptop
    • Mobile Tech
    • Ar & Vr
    • Security
  • Startup
    • Fintech
  • Reviews
  • How To
What's Hot

Pinter 3 review

March 30, 2023

Nine Ways Entrepreneurs Can Use Cloud Technology To Scale Their Businesses

March 30, 2023

Nokia G60 5G review

March 30, 2023
Facebook Twitter Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
Facebook Twitter Instagram Pinterest VKontakte
Behind The ScreenBehind The Screen
  • Tech News
    1. Games
    2. Pc & Laptop
    3. Mobile Tech
    4. Ar & Vr
    5. Security
    6. View All

    Bring Elden Ring to the table with the upcoming board game adaptation

    September 19, 2022

    ONI: Road to be the Mightiest Oni reveals its opening movie

    September 19, 2022

    GTA 6 images and footage allegedly leak

    September 19, 2022

    Wild west adventure Card Cowboy turns cards into weird and silly stories

    September 18, 2022

    7 Reasons Why You Should Study PHP Programming Language

    October 19, 2022

    Logitech MX Master 3S and MX Keys Combo for Business Gen 2 Review

    October 9, 2022

    Lenovo ThinkPad X1 Carbon Gen10 Review

    September 18, 2022

    Lenovo IdeaPad 5i Chromebook, 16-inch+120Hz

    September 3, 2022

    YouTube adds very convenient iPhone homescreen widgets

    October 15, 2022

    Google finishes iOS 16 Lock Screen widgets rollout w/ Maps

    October 14, 2022

    Is Apple actually turning iMessage into AIM or is this sketchy redesign rumor for laughs?

    October 14, 2022

    Samsung’s One UI 5 update is largely about personalization

    October 14, 2022

    MeetKai launches AI-powered metaverse, starting with a billboard in Times Square

    August 10, 2022

    The DeanBeat: RP1 simulates putting 4,000 people together in a single metaverse plaza

    August 10, 2022

    Improving the customer experience with virtual and augmented reality

    August 10, 2022

    Why the metaverse won’t fall to Clubhouse’s fate

    August 10, 2022

    How Apple privacy changes have forced social media marketing to evolve

    October 16, 2022

    Microsoft Patch Tuesday October Fixed 85 Vulnerabilities – Latest Hacking News

    October 16, 2022

    Decentralization and KYC compliance: Critical concepts in sovereign policy

    October 15, 2022

    What Thoma Bravo’s latest acquisition reveals about identity management

    October 14, 2022

    What is a Service Robot? The vision of an intelligent service application is possible.

    November 7, 2022

    Tom Brady just chucked another Microsoft Surface tablet

    September 18, 2022

    The best AIO coolers for your PC in 2022

    September 18, 2022

    YC’s Michael Seibel clarifies some misconceptions about the accelerator • DailyTech

    September 18, 2022
  • Startup
    • Fintech
  • Reviews
  • How To
Behind The ScreenBehind The Screen
Home»Security»Report: Cloud hackers are only 3 steps away from ‘crown jewel’ data
Security

Report: Cloud hackers are only 3 steps away from ‘crown jewel’ data

September 16, 2022No Comments3 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
Report: Cloud hackers are only 3 steps away from ‘crown jewel’ data
Share
Facebook Twitter LinkedIn Pinterest Email

Were you unable to attend Transform 2022? Check out all of the summit sessions in our on-demand library now! Watch here.


The massive acceleration in cloud deployment fueled by the pandemic has continued unabated. Gartner predicts that worldwide spending on public cloud services will grow 20.4% to total $497.4 billion in 2022 and expects it to reach nearly $600 billion in 2023. This massive adoption comes with new security challenges.

To examine those challenges, the Orca Security Research Pod analyzed cloud workload and configuration data captured from billions of cloud assets on AWS, Azure and Google Cloud from January 1–July 1, 2022. The findings show that in the rush to move resources to the cloud, organizations struggle to keep up with ever-expanding cloud attack surfaces and increasing multicloud complexity. The current shortage of cybersecurity skilled staff is further worsening the situation.

Threat actors have a clear advantage as the research found that once they gain access to an organization’s cloud environment, they only need to find three connected and exploitable weaknesses in a cloud environment to get to a “crown jewel” asset, such as personally identifiable information (PII) or credentials that allow root access.

The top initial access point that hackers exploit to get so close to crown jewel data are known vulnerabilities (CVEs) that are not patched promptly (78% of attack paths). This underscores the need for organizations to prioritize vulnerability patching. However, since it is simply not feasible for teams to fix all vulnerabilities, it is essential to remediate strategically by understanding which vulnerabilities pose the greatest danger to the company’s crown jewels so they can be fixed first.

See also  Research shows data security tools fail against ransomware 60% of the time

Event

MetaBeat 2022

MetaBeat will bring together thought leaders to give guidance on how metaverse technology will transform the way all industries communicate and do business on October 4 in San Francisco, CA.

Register Here

Image source: Orca Security.

The research further shows that organizations leave plenty of opportunities for threat actors to progress down the attack path, as 75% have at least one asset that enables lateral movement to another asset. And cyberattackers have more than enough time to complete the three hops as it takes organizations an average of 18 days to mitigate an imminent compromise alert.

Commenting on the research, Fernando Montenegro, senior principal analyst at Omdia, stated, “Orca Security’s State of Public Cloud Security report is interesting as it highlights the breadth of issues affecting organizations now working on cloud environments. Of particular note, it rightfully calls out issues such as identifying sensitive resources, paying close attention to identity and access considerations, and considering the different attack paths an adversary may be able to use.”

The Orca Research Pod compiled this report by analyzing data captured between January 1–July 1, 2022, from billions of cloud assets on AWS, Azure and Google Cloud scanned by the Orca Cloud Security Platform.

Read the full report from Orca Security.

Source link

Cloud Crown data hackers jewel report steps
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Nine Ways Entrepreneurs Can Use Cloud Technology To Scale Their Businesses

March 30, 2023

3D-printed shoe startup steps into $3M to help reduce carbon footprints, localize manufacturing – Startup

March 18, 2023

Want To Brand Yourself As ‘Top Talent’? Nine Steps You Should Take Now

March 17, 2023

Business In Need Of A ‘Declutter’? Nine Steps To Get You Started

March 7, 2023
Add A Comment

Comments are closed.

Editors Picks

‘Wordle’ today, August 29: Answer, hints, help for Wordle #436

August 29, 2022

Apple increases iPhone 14 battery replacement cost by 43%

September 13, 2022

Kenya beefs up consumer data protection

August 5, 2022

JPMorgan and Visa link blockchain payment networks

October 11, 2022

Subscribe to Updates

Get the latest news and Updates from Behind The Scene about Tech, Startup and more.

Top Post

Pinter 3 review

Nine Ways Entrepreneurs Can Use Cloud Technology To Scale Their Businesses

Nokia G60 5G review

Behind The Screen
Facebook Twitter Instagram Pinterest Vimeo YouTube
  • Contact
  • Privacy Policy
  • Terms & Conditions
© 2023 behindthescreen.uk - All rights reserved.

Type above and press Enter to search. Press Esc to cancel.