Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Microsoft Azure Information Protection it combines the Azure Rights Management System (RMS) with the data classification and labeling technology acquired with the purchase of Secure Islands in November 2015. [Read More]
VMware has patched a critical information disclosure vulnerability in its NSX and vCNS products [Read More]
Microsoft intends to dominate the corporate cloud, and everything it does is based on that intention. Google, however, seems to have lost its way. [Read More]
Analysis of more than 600 enterprise users of Office 365 products found that users are continuing to store sensitive data unencrypted in the Microsoft cloud. [Read More]
Bug bounty hunter earns $5,000 for a stored XSS vulnerability in Google’s Cloud Platform Console [Read More]
Congress is tightening security by controlling its users' access to certain cloud services, including blocking Yahoo Mail and Google apps. [Read More]
Microsoft believes in a fundamental split in security responsibility. The cloud provider is responsible for the physical aspects of the cloud IT infrastructure and the software that it provides. The customer is responsible for its own data. [Read More]
Visibility is the main reasoning behind Microsoft's newly available Cloud App Security. It is a CASB, developed from the acquisition of Adallom, and it does what other CASBs do. Microsoft describes this as three primary capabilities: [Read More]
Security risks (44%) followed by compliance and regulation (29%) are the two biggest factors preventing greater cloud adoption. [Read More]
VMware has released updates for the Linux versions of vRealize Automation and vRealize Business to patch XSS vulnerabilities [Read More]

FEATURES, INSIGHTS // Cloud Security

rss icon

David Holmes's picture
How do you secure application components when they’re shifting from cloud to cloud? Any traffic traversing from one public cloud to another is by definition crossing the Internet and should therefore not be trusted.
Alan Cohen's picture
Traditional incident management approaches that rely on network monitoring and detection of attacks are also falling short in today’s agile and distributed computing world.
Alan Cohen's picture
Now that we are coming up on the second “year of the hack”—who said good things only come around once, right?
Marc Solomon's picture
To ensure you understand and can address the main security challenges cloud apps can introduce to your organization, you need additional visibility and context.
Marc Solomon's picture
How do we handle the responsibility that cloud computing brings? It’s a responsibility that must be shared among vendors, users, business leaders, and IT security professionals and involves three key aspects.
Alan Cohen's picture
Like other forms of technical debt, security debt must be paid down, which ultimately leads to a more agile and secure enterprise.
Danelle Au's picture
If your organization is not equipped to deal with the security of Emergent IT, it is probably not equipped to deal with the security of mainstream applications sanctioned by IT.
Joshua Goldfarb's picture
When moving to the cloud, companies must understand the implications, enumerate the risks, and mitigate those risks accordingly.
Alan Cohen's picture
Today’s network perimeter is increasingly not a single physical or virtual place, yet much of the industry debate is still focused on the perimeter.
David Holmes's picture
Will containers replace traditional operating system virtualization in the same way that virtualization has replaced much of the physical, bare-metal world? And how secure are containers, anyway?