Feeds

Beware the coming of the ROGUE CLOUDS, wails Symantec

Some of your firm's vital data is already on Dropbox

Internet Security Threat Report 2014

With one eye on Larry Ellison's Oracle in 2011 Salesforce chief Marc Benioff attacked “fake clouds” saying they aren’t the future.

Oracle - late to clouds - threatened to challenge Benioff’s message of using public clouds that house your data next to other customers' data in a secure, multi-tenant model with the idea of keeping things snugly private - on, say, an Oracle virtual stack.

Now we have “rogue clouds” where firms are buying online services without meaning to or having any control over them, thanks to well-intentioned and cost-conscious employees looking to cut costs.

A survey from Symantec promoting its security and backup offerings reckons three quarters of businesses have reported the existence of rogue clouds in their IT infrastructure.

The bigger the company, the more likely an employer has a rogue cloud - 83 per cent for enterprises versus 70 per cent for small and mid-market employers.

That’s a problem, according to Symantec: because 40 per cent reported the exposure of confidential information through such services with more than a quarter suffering from account take overs, the defacement of web properties and stolen goods of services.

The most commonly cited reason for firing up a rogue cloud was to save time and money, according to Symantec.

Symantec’s 2013 Cloud Survey polled 3,236 organizations from 29 countries between September and October last year.

Symantec didn’t name names, but it is plainly talking about services such as Dropbox, which you can set up quite easily without the permission of the IT department. Dropbox was hacked last year, with users receiving spam after accounts where hacked using people’s passwords and usernames used on other sites. The year before, Dropbox admitted it had inadvertently published code on its web site that let anyone sign in to any Dropbox account without credentials. ®

Internet Security Threat Report 2014

More from The Register

next story
Docker's app containers are coming to Windows Server, says Microsoft
MS chases app deployment speeds already enjoyed by Linux devs
IBM storage revenues sink: 'We are disappointed,' says CEO
Time to put the storage biz up for sale?
'Hmm, why CAN'T I run a water pipe through that rack of media servers?'
Leaving Las Vegas for Armenia kludging and Dubai dune bashing
'Urika': Cray unveils new 1,500-core big data crunching monster
6TB of DRAM, 38TB of SSD flash and 120TB of disk storage
Facebook slurps 'paste sites' for STOLEN passwords, sprinkles on hash and salt
Zuck's ad empire DOESN'T see details in plain text. Phew!
SDI wars: WTF is software defined infrastructure?
This time we play for ALL the marbles
Windows 10: Forget Cloudobile, put Security and Privacy First
But - dammit - It would be insane to say 'don't collect, because NSA'
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Cloud and hybrid-cloud data protection for VMware
Learn how quick and easy it is to configure backups and perform restores for VMware environments.
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.