The Cloud and Cybercrime Risk Factor







[caption id="attachment_1308" align="alignleft" width="300" caption="Cloud Security"]
Cloud Security[/caption]



New applications such as cloud computing and virtualization are becoming increasingly popular – how does this affect IT security and Cybercrime?



In the modern landscape, IT security is no longer the concern of organizations in isolation, but has become a global issue.



Key technology trends including virtualization, cloud computing, Software as a Service (SaaS), mobile devices, and most particularly Web 2.0, are changing the business world and making the security landscape and cybercrime far more complex than ever.



Cybercrime has become a more lucrative business than the global drug trade, and the threat of cyber terrorism and industrial espionage is now a reality.



At the recent IDC IT Security Roadshow, Director of Emerging Markets and EMEA Distribution at SonicWALL delivered a presentation on the threats facing the modern enterprise and the technology that can be used to effectively counter these threats while still maintaining business productivity and allowing access to new tools.



“Network security remains a key concern for businesses. However, the challenge is that network attacks have evolved to the application layer, driven by the growing Web 2.0 trend. Web-based applications offer great communication and productivity benefits, but unfortunately expose the network to a greater level of vulnerabilities and exploitation, Securing and managing applications in this new threat landscape is vital to protect users and businesses from the proliferation of these malicious and targeted phishing attacks,” said Honnay.



One increasingly common method of delivery for malware is web searches.



Legitimate websites are hacked to insert parasite pages peppered with search terms, including current events pulled from the Google Trends system, along with minor typos such as Gogle or Obbama. These hacked pages lead users to enter sites they may consider safe, but which actually contain malware that can compromise networks and devices.



Fake antivirus warnings are also being used in conjunction with web searches to compromise machines. Clicking on a link from one of the “bad” sites will display a warning from a fake antivirus application, which mimics the look and feel of a legitimate antivirus, claiming to detect a large number of nonexistent threats and urging user to pay large sums of money to remove them.



For the full story click here:  Online security within the cloud



It only shows that no matter how well an organization protects itself from external cybercriminals, that because of the human factor (like internal employees) network access can sometimes be gained by the bad guys.  You should definitely check the effectiveness of your security. Take a free phishing security test of your company.



Stu Sjouwerman



KnowBe4



Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews