Dark Reading
Protect The Business - Enable Access
What security questions should you ask a potential cloud sevices provider before you make a decision? Find out here
All News
Revamp Mobile Policy To Secure The Cloud
A majority of employees bring their own devices into work and connect out to the cloud -- now it's time to gain greater control over the security of these devices
Crypto In The Cloud Secures Data In Spite Of Providers
With companies increasingly worried about their data in the cloud, a number of providers have cropped up to offer various types of encryption
Microsoft Skype IP Leakage Not New, Report Contends
Microsoft says it is investigating a report of a vulnerability that can expose the IP addresses of Skype users
VMware Confirms Hacker Leaked Source Code For ESX Hypervisor
Officials at VMware have confirmed that source code posted on the Web by hacker is legitimate, but said customers may not necessarily be at risk
Insecure API Implementations Threaten Cloud
Web and cloud services allow third-party access by exposing application programming interfaces, but many developers and customers do not adequately secure the keys to the cloud and their data, experts say
Europe's Data Security Laws Clear Some Clouds, Muddle Others
Regulations being mulled over by the European Union will clarify security requirements for many cloud providers -- but could hurt U.S. providers
Malware Getting Backed Up Along With Data
Sourcefire data shows how often restoring from malware-contaminated backups reinfects organizations
Tracking And Measuring Cloud Providers' Security Performance
Is your cloud provider meeting its promises for security? Here are some tips for finding out
Vetting The Security Of Cloud Service Providers
A registry offered by the Cloud Security Alliance allows customers to compare the security measures of participating service providers. Is that enough to make cloud more secure?
How To Manage Identity In The Public Cloud
One of the toughest parts of using cloud services is learning how to provision (and de-provision) user access. Here are some tips to help get you started
Cloud Brokers Seek To Simplify, Secure Services
An original aim of the cloud was to simplify corporate infrastructure, but having a multitude of services has made networks complex and hard to manage. Can adding a third party make the cloud more secure?
Cloud's Future Security Depends On Mobile
Passwords are a major weakness for cloud providers. Industry experts say that, in the future, mobile will be the authentication platform of choice
Ambient Cloud Reduces Costs, Boosts Security
Distributed -- or ambient -- cloud storage requires that users chip in by providing disk space and gives them equivalent space in the cloud. Can storing others' data locally be secure?
Tech Insight: Penetration-Testing Your Cloud Provider
Vulnerability assessments and penetration tests can be a great way to validate the security posture of these organizations
Cloud Means More Secure Remote Access
Connecting hosts running remote-access services directly to the Internet is so last decade. Instead, companies look to move to cloud-enabled services or virtual desktop infrastructure.
Facebook Hit By Classic Worm Attack
Zeus Trojan spreads when user views 'photos,' Facebook now blocking malicious domains spreading the attack
Cloud Services Credentials Easily Stolen Via Google Code Search
After finding many cloud access credentials using simple code search, researchers conclude public cloud services are not safe for storing sensitive data
Security Still An Afterthought, Study Says
Despite widespread threats and breaches, most enterprises still ignore security issues when building new apps, Ernst & Young survey says
Most Execs Don't Feel They Can Secure Cloud Infrastructures
Two-thirds of IT pros don't believe cloud environments are as secure as premises environments
The Eight Traits Of Highly Successful Security Startups
Best security startups are those that are willing to take a chance, SINET study says; mobile, cloud security are top categories
Spam Gang Puts Up 80 URL-Shortening Service Sites
Symantec discovers spammers leaving their own URL-shortening services open to the public
Survey: Organizations Are Cloud-Conflicted
Symantec survey finds less than 20 percent of organizations worldwide have fully implemented cloud services
New Botnets Gaining Traction Across The Web, Study Says
Damballa report shows seven new botnets among the top ten largest; off-the-shelf construction kits dominate list
Salesforce To Announce Acquisition Of Crypto Provider
SaaS provider's purchase of Navajo Systems could allay concerns of some cloud skeptics, experts say
70 Percent Of Infected Consumer Machines Hit With Multiple Malware Types
New Sourcefire Immunet and ClamAV data provides snapshot of consumer malware threats
Cloud Security Reports
Monitoring And Measuring Cloud Providers' Security Performance
There is no ignoring the cloud, which means that IT professionals must find ways to monitor and measure the performance of cloud providers. While moving even in part to a cloud model is a big change for many reasons, the most significant difference is a loss of direct control. Just as security groups often struggle with managing security inside a corporation when in a governance role, we struggle even more with governing the security of assets that no longer sit within our own data centers. The challenge is to develop and implement a strong governance model for these cloud offerings that ensures that security is part of the conversation.
How to Manage Identity in the Public Cloud
Use of the public cloud for enterprise applications complicates what was already a complicated task: identity management. As companies increase their use of cloud-based applications, IT and security professionals must make some tough and far-reaching decisions about how to provision, deprovision and otherwise manage user access. This Dark Reading report examines the options and provides recommendations for determining which one is right for your organization.
Spot Trouble In The Cloud: Adapting Security Monitoring & Incident Response.
Security monitoring, incident response and forensics are essential, even in the cloud. But the cloud by definition implies relinquishing at least some control, which can make these practices problematic. In this report, we identify the challenges of detecting and responding to security issues in the cloud and discuss the most effective ways to address them.
Other reports from the Cloud Security Tech Center:
Cloud Security Newsfeed
- Agiliance Automates Security Assessment Of Gov Cloud Services
- Information Services Group Joins Cloud Security Alliance
- Vaultive Introduces Enterprise-Class Cloud Data Encryption Solution For Hosted Exchange
- Trend Micro Plug-In Makes It Easy For Companies Using Apache CloudStack To Encrypt And Protect Their Cloud Data
- HP Moves HP Cloud Services To Public Beta
- Trend Micro Reports First Quarter Results
MORE NEWSFEED >>>
- Big Data at High Speed: Complex Event Processing at 10x
- The Business Case for Replacing Legacy Accounting Systems
- Techniques for Next-Gen Data Protection using Next-Gen Computing
- Protecting End Users Against Emerging Threats
- Insurance Workforce Optimization: How To Work Smarter To Benefit Your Customers, Employees and the Bottom Line
