Description |
1 online resource (xxxi, 473 pages : illustrations) |
Note |
Includes index. |
Contents |
Foreword -- 1. Introduction -- 2. Cloud computing -- 3. Cloud service providers -- 4. Cloud definitions -- 5. Asset management -- 6. Attack vectors -- 7. Mitigation strategies -- 8. Regulatory compliance -- 9. Architectures -- 10. Swarm intelligence -- 11. Chaos engineering -- 12. Imposter syndrome -- 13. Selecting a cloud service provider -- 14. Security recommendations for your cloud environment -- 15. Conclusion. |
Summary |
Cyberattacks continue to increase in volume and sophistication, targeting everything owned, managed, and serviced from the cloud. Today, there is widespread consensus--it is not a matter of if, but rather when an organization will be breached. Threat actors typically target the path of least resistance. With the accelerating adoption of cloud technologies and remote work, the path of least resistance is shifting in substantive ways. In recent years, attackers have realigned their efforts, focusing on remaining undetected, monetization after exploitation, and publicly shaming organizations after a breach. New, innovative, and useful products continue to emerge and offer some cloud protection, but they also have distinct limitations. No single, standalone solution or strategy can effectively protect against all cloud attack vectors or identify all malicious activity. The simple fact is that the cloud is based on a company's assets being offered as services. As a result, the best security any organization can achieve is to establish controls and procedures in conjunction with services that are licensed in the cloud. Cloud Attack Vectors details the risks associated with cloud deployments, the techniques threat actors leverage, the empirically-tested defensive measures organizations should adopt, and shows how to improve detection of malicious activity.-- Provided by publisher. |
Biography |
Morey J. Haber is Chief Technology Officer at BeyondTrust. Brian Chappell is Chief Security Strategist for Beyond Trust, EMEA & APAC. Christopher Hills is a Security Strategist focused on Privileged Access Management (PAM) and Identity and Access Management (IAM). |
Subject |
Cloud computing.
|
|
Cloud computing -- Security measures.
|
|
Cyberterrorism.
|
|
Infonuagique. |
|
Infonuagique -- Sécurité -- Mesures. |
|
Cyberterrorisme. |
|
Cloud computing |
|
Cyberterrorism |
Added Author |
Chappell, Brian, author.
|
|
Hills, Christopher (Security strategist), author.
|
Other Form: |
Print version: Haber, Morey J. Cloud attack vectors. New York : Apress, 2022 9781484282359 (OCoLC)1328013049 |
ISBN |
9781484282366 electronic book |
|
1484282361 electronic book |
|
paperback |
|
paperback |
Standard No. |
10.1007/978-1-4842-8236-6 doi |
|