@NJBlackberry
I'm really sorry but those websites don't show cloud was hacked- from the second link:
"Let's first acknowledge that Google Apps was not specifically "hacked" in the traditional sense of the word during the Twitter hack. A hacker did not break into Google computers through some technical vulnerability in the Google infrastructure.
A hacker found a personal e-mail account for the administrative assistant previously mentioned. Similar to the Sarah Palin Yahoo! account hack, the hacker researched social networking sites to find the answer to the "secret question" required to reset the account's password. In going through the e-mails in the account, the hacker apparently found the password used by the administrative assistant on other sites, and correctly assumed that person used that password on their Twitter corporate account at Google Apps.
This gave the person access to e-mails and files. Other information available to the account also allowed the attacker to compromise the Twitter corporate accounts of other employees."
These social engineering hacks are just as much of a problem on-prem as in the cloud. Even worse, most people with on-prem software don't have good security people like I'm assuming you are....
Secondly, the first link was for a web hoster- since when have web hosters been cloud providers??? I think that's been "cloud washed".
The point is- as Eric Domage, Security Analyst from IDC said, Cloud computing doesn't bring new issues, it just highlights old ones.
Like I said before, you can't utilise the old defence in depth model- you need to start protecting your information.
@CanuckBB
I can only speak for myself- but I'd rather have specialists looking after my infrastructure en-masse rather than generalists looking after small scale stuff mostly held together with duct tape.
The reality is now there are very secure Cloud providers, that are brilliant places to put your data. Not only that, they've got so much of the stuff, no one would ever want to look at your stuff. Also, plenty of smaller companies are targeted- I know first hand - you don't have to be big to be targeted.
Justin
|