A flaw in Google's account-recovery process has resulted in CloudFlare CEO Matthew Prince losing control of his Google Apps for Business account, despite it being protected with two-factor authentication.
In the last few days, several iCloud users have stated on Apple's forums that their iCloud accounts have been sending out spam, and appear to have been hacked. User øivindfromoslo wrote, "never used the iCloud e-mail account for anything (and I hate that apple forces it on you) but suddenly everyone in my contact list have received spam mails from that @me.com address."
If your organization uses a multi-tenant managed hosting service or Infrastructure as a Service (IaaS) cloud for some or all of your dataAAand you aren't following best practices by encrypting that dataAyou may be inadvertently exposing it.
Last year, information security consultancy Context Information Security was tasked by a number of its clients, mostly banks and other high-end clients with serious security concerns, to determine whether the cloud was safe enough for their computing needs.
BoxCryptor, the client-side encryption tool for Dropbox, Box.net and other cloud storage services, has come a long way since its early, Windows-only incarnation.
These days, the tool works not only on Windows, Mac OS X and Linux, but also on Android and iOS. Right now, though, the Android version only works with Dropbox — but on Friday the team pushed out an update that they say readies it for other providers, including Box.net.
At the Evolve.CLOUD conference in Sydney CSO sat down with Archie Reed, CTO Strategic Enterprise Services APAC and Japan for HP, to talk about the Cloud Security Alliance for which Reed is also a member. He outlined the global organisation's goals for standardising security in the cloud, education and certification, and what it means for companies looking to or making a transition to the cloud.