Cloud Security This Week – September 15, 2017

The impact of the Equifax breach started to sink in among the 143 million people who were affected, and ElasticSearch servers got hit with PoS malware. All in all, not a great week for…well, for anyone who has a credit card, email account, or any other personal information that’s been transacted or stored digitally. So yeah, pretty much everyone.

So, while the news doesn’t seem to be getting any better, we are trying to provide some hope. In addition to the bad news, listed below are guides to help you prevent your name making headlines. We’ll be following these stories, and others as they pop up in the coming weeks, but in the meantime, here’s our rundown of another interesting week in the world of cloud security:

New from
What Security Pros Want From Equifax
Equifax has already differentiated themselves with the sheer magnitude of this thing, but they also have an opportunity to stand out by how they fix this. Here’s how.

ESP @ Work: Transforming a Consumer Goods Company with Security in the Cloud
This $1.7 billion consumer goods company relies on the cloud for their IT infrastructure. As they continue to grow and evolve, they use Evident Security Platform (ESP) to give them control over their security posture.

15,000 Servers With No Authentication; 4,000 Infected with PoS Malware. An ElasticSearch Malware Disaster.
This is why we can’t have nice things.

How to Choose a Cloud Security and Compliance Platform
Cloud security is different. Here’s a quick, visual guide to help you find the right partner to protect your cloud environment.

News and Perspectives on Cloud Security
Cloud Security Hype Fails to Match Deployments
Technologies like software-defined perimeter and key management as-a-service generate enthusiasm but will take years to reach mainstream adoption.

Admin Accounts With No Passwords at the Heart of Recent MongoDB Ransom Attacks
I’m trying to act more like an adult, but all I can say is, “duh.”

Ayuda! (Help!) Equifax Has My Data!
Krebs provides a great back story on this huge breach. This quote is just too irresistible: “To me, this is just negligence. In this case, their approach to security was just abysmal, and it’s hard to believe the rest of their operations are much better.”

Apple’s Data-Mining Privacy Protections Fall Short, Study Finds
Apple had a big week – iPhone X, iPhone 8, Apple Watch Series 3, 4k Apple TV. Then this happened. Will anyone pay attention?