AWS 2021 Updated Security Tools + Technologies

Wed, 05/19/2021 - 16:33

The cloud has been embraced for its reliability and scalability, as well as a breadth of security benefits. However, just because the cloud can be more secure, organizations aren't guaranteed protection from data breaches and security threats. This article dives into how companies can protect themselves and mitigate damage from a variety of security threats in 2021. 

Why Security Is More Important Than Ever

Fri, 02/07/2020 - 17:42

The Modern World of Security

In today's world, the security of your data, applications, and accounts is more important than ever. Having strong security measures built into your cloud strategy is necessary for keeping sensitive and proprietary data stored online safe from malicious third parties. Successfully migrating your data infrastructure to the cloud requires that you analyze all the key aspects of the system, as well as plan for prevention and protection against security threats.

DevOps Security Best Practices: 5 Security Tools To Use In 2019

Thu, 10/10/2019 - 18:17

Understanding Security Challenges in 2019

In 2018, the Internet Security Threat Report highlighted the challenges enterprises face with cyberattacks and hackers. The report showed that approximately 4,800 websites were compromised per month, the use of PowerShell scripts increased by a thousand percent, and the cloud was not left out. Cloud-based services, applications or solutions were alarmingly compromised that approximately 70 million records were stolen from poorly configured S3 buckets. 

Capital One Data Breach And The Amazon Shared Security Model

Thu, 08/01/2019 - 19:03

On July 17 Virginia-based bank Capital One received an email tip that their data had been leaked on code-hosting site Github.  An initial investigation found that the data originated from a Capital One server hosted in the cloud that was accessed via a misconfigured firewall.

Capital One contacted the FBI who found online social media postings of the hack by former Seattle software engineer Patricia Thompson who was then arrested and charged on July 29th for computer intrusion and theft of the Capital One data.

What Marriott and Quora Did Wrong

Wed, 01/09/2019 - 19:14

Really? Again?

When will companies learn how to properly protect their data?  Starting with Target and Yahoo in 2013, Sony and OPM in 2014, Ashley Madison in 2015, the Democratic National Committee in 2016, Equifax in 2017 and now Marriott and Quora back-to-back to cap off 2018, data breaches are becoming a mainstay in the news. It begs the question: what are so many of these organizations missing?  

And if it can happen to companies with big budgets like these, then how can a mid-market or small business be expected to keep up?

Post PetyaWrap - How To Prevent Ransomware Attacks

Wed, 08/16/2017 - 19:45

Now that most have recovered from the hangover of the PetyaWrap ransomware attacks, it is Monday morning quarterback time. PetyaWrap was not a new ransomware with a zero day vulnerability, but rather a combination of three common vectors of attack that companies do not always take seriously. But securing your assets go beyond just your servers (aka EC2 instances); you also need to ensure your AWS Account is equally as secure.