Nightfall’s Cloud Security Newsletter 4/14/20


In Nightfall’s Trends in Cloud Security Newsletter, we review the top stories and developments in cloud security. Some of this issue’s highlights include:

Read these stories and other timely cloud security stories below.

Incidents in the Cloud

Marketing giant Maropost exposes 95 million email records and doesn’t seem to care about it
CyberNews discovered an exposed database belonging to Maropost, a marketing automation platform that operates offices in the US, Canada, and India. Maropost provides solutions including email marketing, commerce, service, clienteling, and referral worldwide. The company’s 10,000+ clients include such big names as the New York Post, Shopify, Fujifilm, Hard Rock Cafe, and Mother Jones.

44M Digital Wallet Items Exposed in Key Ring Cloud Misconfig
Key Ring, creator of a digital wallet app used by 14 million people across North America, has exposed 44 million IDs, charge cards, loyalty cards, gift cards and membership cards to the open internet, researchers say. The Key Ring app allows users to upload scans and photos of various physical cards into a digital folder on a users phone.

Open database exposes 425 GB of financial companies’ data
These cloud services have become one of the most common vectors of large-scale data compromise in the past two or three years, explains Researchers at vpnMentorAWS S3BitglassAccording to Verizon Researchers at vpnMentor have shared news about a recent data leak which exposed 425 GB in sensitive financial documents.

Strategies For Securing The Cloud

You have to consider cybersecurity at all points of a cloud migration
Human error and complex cloud deployments open the door to a wide range of cyber threats, according to Trend Micro. Gartner predicts that by 2021, over 75% of midsize and large organizations will have adopted multi-cloud or hybrid IT strategy. As cloud platforms become more prevalent, IT and DevOps teams face additional concerns and uncertainties related to securing their cloud instances.

Cloud security demands a shared strategy for HIPAA compliance
Which security responsibilities belong to HIPAA-covered entities, and which should be tasked to their cloud-service-provider business associates? The situation will differ, depending on the size, shape and policies of each. But there’s an onus on both of them to work together and set the parameters of what they’ll bring to the table.

Planning key for cloud migration in the financial services industry
More companies are moving data to the cloud to empower a dynamic workforce, improve the reliability of their services, and to gain flexibility in their IT expenditure. Cloud-based systems are accessible from anywhere, are mostly unaffected by power outages, and are easy to scale. They are also the ideal solution if a large portion of your workforce is working remotely.

Download WordPress Themes
Download WordPress Themes Free
Premium WordPress Themes Download
Premium WordPress Themes Download
download udemy paid course for free
download lava firmware
Download Premium WordPress Themes Free
free download udemy paid course
Share this post: