Cloud security – a chargeable extra?

Grazed from Diginomica. Author: Phil Wainwright.

Every security breach of third-party data harms public trust in cloud computing. Not only well-publicized mega-breaches like the theft of login data, encrypted credit card data and source code from Adobe, but also the word-of-mouth damage that arises every time an individual has their account hacked.

You’d think that cloud computing providers would go out of their way to minimize vulnerabilities. Of course they invest massive sums in securing their datacenters against direct attack. But most attacks today don’t come at the physical network perimeter. Why try and tear down the walls when you can just steal the keys and walk right in? Most attacks today gain access by stealing or cracking passwords that allow the hacker to assume a trusted user’s identity…

Therefore it’s in the interests of cloud providers to encourage their users to do everything they can to protect their login credentials — in particular to use strong, unique passwords, multifactor authentication and tamper-proof password recovery processes…

Read more from the source @ http://diginomica.com/2013/10/07/cloud-security-chargeable-extra/