Adrian Lamo: Who killed the hacker? What does Julian Assange have to do with it?
infosec

Adrian Lamo: Who killed the hacker? What does Julian Assange have to do with it?

The mysterious death of hacker Adrian Lamo who betrayed Chelsea Manning comes to the fore again, causing concern for Julian ...
Read More
infosec

1,300 Harbor cloud storage vulnerable to attack: Update immediately!

Researchers from Palo Alto Networks' Unit 42 have discovered a critical vulnerability in a popular open source cloud system.
Read More
infosec

TOP virus scan to safely scan a suspicious email attachment

Normally we all have antivirus software that resides on our computers to protect data files from malicious ...
Read More
infosec

WannaCry ransomware continues to invade computers

The infamous WannaCry ransomware that became known in May on 2017 continues to invade computers. Findings are coming today ...
Read More
infosec

Albanian gangs use cryptocurrencies for money laundering

UK police are particularly concerned as 'famous' Albanian gangs, involved in cocaine circuits, are now using ...
Read More
Latest Posts

After the Capital One breach, should big companies fear the public cloud?

You will find it harder to find a company more committed to using the so-called public cloud than Capital One. America's seventh-largest bank has spent years clearing its data centers - from eight 2014 to no (data center) scheduled until the end of 2020 - and will rely on Amazon Web Services' resources for computers and data storage. But now, after a data breach affecting 106 millions of North Americans, people are wondering if Capital One represents a security warning story in the cyberspace.

Capital One

In order to escape through Capital One's systems, a hacker was allegedly exploiting an "incorrect firewall". Basically, o hacker, it just seems like an open door. Both Capital One and Amazon stressed that "this type of vulnerability is not cloud specific".

However, some experts - such as Evan Johnson, a security manager - say AWS's technical deployment made the breach "much worse". AWS (Amazon Web Services) is particularly sensitive to 'request forgery server", Says Johnson, in which a hacker tricks a server into a connection where it shouldn't, allowing data theft.

Despite the criticism, Capital One's "breach" does not prove that cloud it's wrong, "says Glenn O'Donnell, a Forrester VP. "What proves is that you need to have the right controls in place in terms of it security and governance. "

Ed Amoroso, former security officer for AT & T, agrees that for most businesses, the infrastructure for off-loading in the cloud remains more secure than their own management.

Share
Do you have an opinion? Leave your comment.

The author allows you to copy his / her text only if you report the source (SecNews.gr), as an e-mail address (Live URL) of the article.
Updated on by
Teo Ehc

About Teo Ehc

BE THE LIMITED EDITION.

Reader Interactions

Leave a reply

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *