Cloud Security


From the Web

Petabytes On the Cheap

July 21, 2010 from: Rsnake's blog at ha.ckers.org

It turns out you can create a single chassis that contains around 67 terabytes in it for $7,867. That’s pretty incredible...It almost doesn’t make any cost sense to outsource your storage to the cloud with those cost savings.

Comments  (1)


From the Web

Relationships with Foreign Business Partners

March 15, 2010 from: Greg George

As business leaders continue to reach out and embrace global opportunities, the ability to recognize and mitigate operational threats is paramount....a recent memorandum discusses 28 countries having serious deficiencies in their strategies for countering money laundering and financial terrorist activities

Comments  (0)


From the Web

Thousands of Twitter user accounts compromised

February 23, 2010 from: Saumil's Infosec Blog

IT security firm, Sophos, has warned Twitter users on a new attack that has led to thousands of accounts being compromised by hackers using a Web 2.0 botnet. The hijacked accounts are later used to spread money-making spam campaigns.

Comments  (1)


From the Web

Afraid of the Cloud..? You just need to ask the right questions…

February 12, 2010 from: Greg George

I’ve been receiving more and more inquiries from my social media circles and from clients regarding various security risks associated with using Software as a Service (SaaS): the Cloud, so I thought I’d share a few thoughts on the current status of things.

Comments  (1)


From the Web

Seven Technical Security Myths of the Cloud

January 11, 2010 from: AEON Security Blog

CloudSecurity.org [1] staff wrote a document called “Assessing the Security Benefits of Cloud Computing” [2] and within the article they listed the “Seven Technical Security Benefits of the Cloud.” The article was well written and intentioned however, I decided to place a realistic view on the CloudSecurity’s content and in turn I present the “Seven Technical Se...

Comments  (1)


From the Web

All Your Clouds Are Belong to… Not You

January 08, 2010 from: AEON Security Blog

After reading ENISA’s “Benefits, risks and recommendations for information security” [1], I am convinced even more so now than I ever was before, against the cloud. For those unaware of the acronym, ENISA stands for European Network and Information Security Agency. It can be viewed as Europe’s version of the USA’s NIST. Their document is 125 pages, with 71 pages encom...

Comments  (0)


From the Web

Pssst… For A Cup of Coffee, I’ll Say Your Cloud Is Secure

January 05, 2010 from: AEON Security Blog

In an article entitled “Cloud computing is a trap, warns GNU founder Richard Stallman” [1] the context couldn’t have been worded better:“It’s stupidity. It’s worse than stupidity: it’s a marketing hype campaign” … “Somebody is saying this is inevitable – and whenever you hear somebody saying that, it’s very likely...

Comments  (0)


From the Web

Cloud Security: Want Some Fake Fries With That Vapor Shake?

December 30, 2009 from: AEON Security Blog

Recently I stumbled upon the Cloud Security Alliance’s “Security Guidance for Critical Areas of Focus in Cloud Computing V2.1” [1] and took a quick step back at this statement: Cloud computing is about gracefully losing control while maintaining accountability even if the operational responsibility falls upon one or more third parties. In being fair and logical about my interpret...

Comments  (1)


From the Web

Cloud Security Evangelists May Have Heads Stuck In Clouds

December 17, 2009 from: AEON Security Blog

Cloud Computing evangelists would have you believe that security in the cloud is relevant when reality paints a far different picture. Security managers should know that; “you can transfer risk but never responsibility.” Now add this statement to memory: “No cloud provider will give you the security you need.” Seriously.

Comments  (0)


From the Web

Cloud Based Wireless Cracking Services

December 15, 2009 from: AEON Security Blog

Security researchers are leveraging cloud computing to crack WPA wireless passwords at a cost and we’re wondering what other nefarious deeds are being done via cloud computing that we’ve never heard about. To be fair about this, for starters if you take notice of PC World’s title for the article, “New Cloud-based Service Steals Wi-Fi Passwords” it’s completely w...

Comments  (0)


From the Web

Cloud/SaaS will do for websites what PCI-DSS has not

October 02, 2009 from: Jeremiah Grossman's Blog

If a would-be Cloud/Software-as-a-Service (SaaS) customer is concerned about security, and they should be since their business is on the line, then security should be the vendors concern as well. Unless the Cloud/SaaS vendor is able to meet a customer’s minimum requirements, they risk losing the business to a competitor who can.

Comments  (1)


From the Web

Locking up the valuables: Opt-in security with ForceTLS

July 28, 2009 from: Mozilla Security Blog

Computers are increasingly mobile and, to serve them, more and more public spaces (cafes, airports, libraries, etc.) offer their customers WiFi access. When a web browser on such a network requests a resource, it is implicitly trusting the hotspot not to interfere with the communication.  A malicious computer hooked up to the network could alter the traffic, however, and this can have some un...

Comments  (1)


From the Web

Network Solutions suffers crippling data breach

July 27, 2009 from: Office of Inadequate Security

Over half a million credit card holders may have had their account details captured by hackers, after web hosting firm Network Solutions revealed that more than 4,000 of the e-commerce sites it hosts could have been breached.

Comments  (1)