Malware is a persistent threat in the cloud

A report about the state of enterprise computing presented during the recent RSA Conference on digital security revealed a sobering statistic: a quarter of all American businesses using public cloud solutions have suffered data breaches.

A report about the state of enterprise computing presented during the recent RSA Conference on digital security revealed a sobering statistic: a quarter of all American businesses using public cloud solutions have suffered data breaches. According to McAfee, a respected name in network security, data theft has affected one out of every four companies that have switched from the old client/server model to cloud computing.

Among the findings compiled by McAfee, it is interesting to note that many of the data breach incidents reported involved the careless use and implementation of public cloud solutions such as Dropbox and Office 365; however, some organizations that use Software-as-a-Service have also faced data theft situations.

SECURING YOUR BUSINESS IN THE CLOUD

One of the problems related to cloud security is the prevalence of malware, which can be traced to a burgeoning trend in cloud-based exploits. To a great extent, cloud-based malware very similar to traditional methods of infection such as phishing and theft of passwords by means of keyloggers and rootkits.

Bitglass, an IT security research firm focused on cloud applications, found that Microsoft OneDrive is the SaaS solution with the highest rate of malware infection, which is often caused by uploaded files that end up being part of Trojan horse attacks.

What business owners and IT managers in the High Desert must realize is that the threat of cloud malware is not going away. The aforementioned McAfee report suggests that more than 95 percent of companies in the United States have already migrated their digital assets to the cloud; naturally, hackers are closely following this trend.

SONIC SYSTEMS MANAGES DATA SECURITY

One of the keys to avoiding cloud malware is to refrain from rushing into SaaS solutions without proper consultation. Small companies that simply purchase an Office 365 subscription without first performing a security audit are taking an unnecessary risk, particularly if their employees are accessing the cloud on various devices.

When it comes to choosing cloud computing solutions, the one-size-fits-all approach can be dangerous. Companies such as law firms that handle sensitive data will benefit more from a hybrid than a public cloud solution. Other companies will need a backup and disaster recovery server. All companies will require some level of endpoint security, particularly if a “Bring Your Own Device” policy is in effect.

The best way to approach the cloud is to do it strategically. At Sonic Systems in Victorville, our cloud computing consultants can help you design a secure and efficient cloud structure that is right for your business.