California-based company Redlock is offering Cloud Security Intelligence (CSI) which is capable of saving organizations from $758 million data breach costs. The company which offers security related to cloud infrastructure brings together an intelligence which is enriched by elite security analysts, data scientists and data engineers from corporations as large as Microsoft, Cognizant, Credit Suisse and Honeywell.
The security team helps companies in adopting cloud computing infrastructure in their work environments by researching cloud threats on time and in a proactive way. Then the team advises cloud security best practices by publishing them on RedLock Cloud 360 platform.
And as per the update available to the media, RedLock’s CSI team has so far identified 4.8 million exposed records of sensitive data related to healthcare and Payment Authorities. Thus, in this way, RedLock’s CSI team, helped organizations avoid over $758 million in data breach costs.
On a simultaneous note, Redlock’s CSI team has also released its first Cloud Infrastructure Security Trends report which highlights major vulnerabilities existing in public cloud environments. The report also discloses that 82% databases in public cloud environments are not encrypted- means they are extremely vulnerable to hackers.
The Redlock CSI report, in particular, reveals that ‘Network Security’ is being overlooked in Public Cloud environments as companies are allowing unregulated access to sensitive applications without any parameters on who will need the access and why they need that access.
The CSI report of the cloud security company specifies that most of the corporate environments are lacking user access controls which are leading to the practice of poor security hygiene among users.
Redlock specifies that developers are also showing blind eye towards security due to lack of security expertise. The report claims that developers are only showing interest in offering new technologies like containers by neglecting the security factor to the core.
In the study carried out by Redlock, its researchers found that 285 Kubernetes dashboards deployed on Google Cloud, Microsoft Azure, and AWS were not password protected. And in some cases, kubernetes were having plain text credentials which are easy to access for hackers.
Note- Kubernetes is a freely available software used in automating deployment, scaling, and operations of application containers across a cluster of hosts offering container-centric infrastructure.
So, under these circumstances, achieving continuous compliance in constantly changing environments is becoming extremely hard
