Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

3/26/2019
10:00 AM
50%
50%

87% of Cloud Pros Say Lack of Visibility Masks Security

The majority of cloud IT professionals find a direct link between network visibility and business value, new data shows.

Most (84%) businesses increased their cloud-based workloads in 2018, but lack of visibility into those workloads could compromise security and business value, cloud experts report. Only 13% of companies surveyed reported the same level of public cloud usage as the previous year.

These findings come from "The State of Cloud Monitoring," a new report released today by Keysight, which polled 300-plus IT professionals who handle public and private cloud deployments in global organizations across 15 countries. Nearly seven out of 10 respondents said public cloud monitoring is more difficult than monitoring data centers and private cloud environments, and less than 20% said their organizations can properly monitor public cloud environments.

The lack of visibility is masking security threats, according to 87% of respondents. It also leads to a variety of application and network performance issues, including the inability to deliver against service agreements. Most (95%) pros said visibility problems led to an application or network performance issue, and 99% reported they notice a direct link between network visibility and business value.

What problems does this lack of visibility cause? Delays with troubleshooting application performance issues (48%) were most common, followed by delays in troubleshooting network performance issues (40%), an application outage (38%), and the inability to monitor performance of workloads in the cloud (31%), which tied with network outage (31%).

Read more details here.

 

 

 

Join Dark Reading LIVE for two cybersecurity summits at Interop 2019. Learn from the industry's most knowledgeable IT security experts. Check out the Interop agenda here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
StephenGiderson
50%
50%
StephenGiderson,
User Rank: Strategist
4/4/2019 | 1:10:53 AM
Security first
In recent years, there have been several data breach cases amongst various organisations including top-notch tech giants. This is obviously highly worrying, thus making the factor of security highly-sought after for any establishment there is today. If this isn't something that they can be given assurance, then there could be a visible risk of reduced usage.
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
3/28/2019 | 9:19:18 AM
To Be Expected
Public cloud suggests that companies really don't have governance or visibility into the data that is being stored there so I would say this is to be expected. VPC's will provide a greater level of visibility and monitoring for the company utilizing them because the company will contract these out to their own lease/ownership. When you leverage public cloud the shared data model is a bit more ambiguous and such prone to not be a proponent to security.
The Problem with Proprietary Testing: NSS Labs vs. CrowdStrike
Brian Monkman, Executive Director at NetSecOPEN,  7/19/2019
How Attackers Infiltrate the Supply Chain & What to Do About It
Shay Nahari, Head of Red-Team Services at CyberArk,  7/16/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Building and Managing an IT Security Operations Program
As cyber threats grow, many organizations are building security operations centers (SOCs) to improve their defenses. In this Tech Digest you will learn tips on how to get the most out of a SOC in your organization - and what to do if you can't afford to build one.
Flash Poll
The State of IT Operations and Cybersecurity Operations
The State of IT Operations and Cybersecurity Operations
Your enterprise's cyber risk may depend upon the relationship between the IT team and the security team. Heres some insight on what's working and what isn't in the data center.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-10102
PUBLISHED: 2019-07-22
The Linux Foundation ONOS 1.15.0 and ealier is affected by: Improper Input Validation. The impact is: The attacker can remotely execute any commands by sending malicious http request to the controller. The component is: Method runJavaCompiler in YangLiveCompilerManager.java. The attack vector is: ne...
CVE-2019-10102
PUBLISHED: 2019-07-22
Frog CMS 1.1 is affected by: Cross Site Scripting (XSS). The impact is: Cookie stealing, Alert pop-up on page, Redirecting to another phishing site, Executing browser exploits. The component is: Snippets.
CVE-2019-10102
PUBLISHED: 2019-07-22
Ilias 5.3 before 5.3.12; 5.2 before 5.2.21 is affected by: Cross Site Scripting (XSS) - CWE-79 Type 2: Stored XSS (or Persistent). The impact is: Execute code in the victim's browser. The component is: Assessment / TestQuestionPool. The attack vector is: Cloze Test Text gap (attacker) / Corrections ...
CVE-2019-9959
PUBLISHED: 2019-07-22
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo.
CVE-2019-4236
PUBLISHED: 2019-07-22
A IBM Spectrum Protect 7.l client backup or archive operation running for an HP-UX VxFS object is silently skipping Access Control List (ACL) entries from backup or archive if there are more than twelve ACL entries associated with the object in total. As a result, it could allow a local attacker to ...