Data breaches, account hijacking and malicious employees with access to critical data and networks are among the top security threats in the cloud, according to a non-profit research group that represents the security interest of cloud providers.
The Cloud Security Alliance’s “Treacherous 12” top threats to the cloud industry report reflects the current consensus among security experts in the CSA community about the most significant security issues in the cloud.
While security concerns in the cloud are abundant, CSA says this list focuses on 12 specifically related to the shared, on-demand nature of cloud computing, according to the report.
“Although shifting to cloud technologies exclusively may provide cost and efficiency gains, doing so requires that business-level security policies, processes, and best practices are taken into account,” according to the report. “In the absence of these standards, businesses are vulnerable to security breaches that can erase any gains made by the switch to cloud technology.”
The full report can be accessed here for more detail.
The top 12 cloud threats:
1. Data Breaches
2. Weak Identity, Credential and Access Management
3. Insecure APIs
4. System and Application Vulnerabilities
5. Account Hijacking
6. Malicious Insiders
7. Advanced Persistent Threats (APTs)
8. Data Loss
9. Insufficient Due Diligence
10. Abuse and Nefarious Use of Cloud Services
11. Denial of Service
12. Shared Technology Vulnerabilities