Nearly all firms have some kind of cloud misconfiguration issue
Many are easily fixed, but some issues are trickier to tackle
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
New research by Zscaler Threatlabz has found many businesses haven’t set up their cloud technologies correctly, potentially exposing themselves to some serious vulnerabilities and risk of cyberattacks.
The research analyzed more than 260 billion daily transactions globally across Zscaler’s platform, which uncovered some pretty disconcerting results.
Among the key findings were misconfigurations that had put almost all businesses at risk, as well as the lack of adoption of some pretty basic technology that goes a long way to protect users.
Data exposure on the cloud
The number of organizations that have “concerning” misconfigurations that cause “critical” risks to data and infrastructure sits at an alarming 98.6%. However, Zscaler stresses that these are merely misconfigurations and not vulnerabilities, meaning that with the correct care and attention, the risk could be minimized drastically.
It also found that 68% of companies had given external users admin permissions, which increases the risk of data exfiltration and exploits. While this isn’t a misconfiguration as such - as it’s likely intentional - businesses should carefully consider exactly who needs higher levels of permission.
The study also found that very few organizations employ basic protection in the form of multi-factor authentication (MFA) to privileged user accounts, which means that a leaked or otherwise exposed password could be all that a malicious user needs to gain access to sensitive company information.
These are the best cloud hosting providers around>Cloud-based cyberattacks have seen a huge rise>Cloud spending slows, but market still saw a huge boost in 2022
Moving away from misconfigurations, Zscaler highlighted the number of companies who blatantly fail to apply basic ransomware controls forcloud storage(which sits at 59.4%), which could be a cost-saving effort that puts them at serious risk.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Overall, it’s clear that almost every business can take basic steps to protect its data before needing to fork out for expensive and more advanced tools.
With several years’ experience freelancing in tech and automotive circles, Craig’s specific interests lie in technology that is designed to better our lives, including AI and ML, productivity aids, and smart fitness. He is also passionate about cars and the decarbonisation of personal transportation. As an avid bargain-hunter, you can be sure that any deal Craig finds is top value!
Nokia confirms data breach leaked third-party code, but its data is safe
Best CDN provider of 2024
Black Friday is here: Sony XM5 over-ears drop to their lowest-seen price – act fast!
