US Plans More Regulations to Improve Cloud Security

vtqhtr413

vtqhtr413

Level 26
Thread author
Verified
Top Poster
Well-known
Aug 17, 2017
1,485
Content source
https://developers.slashdot.org/story/23/03/11/201237/us-plans-more-regulations-to-improve-cloud-security?utm_source=rss1.0mainlinkanon&utm_medium=feed
Among other steps, the Biden administration recently said it will require cloud providers to verify the identity of their users to prevent foreign hackers from renting space on U.S. cloud servers (implementing an idea first introduced in a Trump administration executive order). And last week the administration warned in its national cybersecurity strategy that more cloud regulations are coming — saying it plans to identify and close regulatory gaps over the industry.... So far, cloud providers have haven't done enough to prevent criminal and nation-state hackers from abusing their services to stage attacks within the U.S., officials argued, pointing in particular to the 2020 SolarWinds espionage campaign, in which Russian spooks avoided detection in part by renting servers from Amazon and GoDaddy. For months, they used those to slip unnoticed
Click to expand...
developers.slashdot.org

US Plans More Regulations to Improve Cloud Security - Slashdot

Politico reports: Governments and businesses have spent two decades rushing to the cloud — trusting some of their most sensitive data to tech giants that promised near-limitless storage, powerful software and the knowhow to keep it safe. Now the White House worries that the cloud is becomin...
developers.slashdot.org
 
  • Like
  • +Reputation
  • Thanks
Reactions: upnorth, oldschool, simmerskool and 2 others
MuzzMelbourne

MuzzMelbourne

Level 15
Verified
Top Poster
Well-known
Mar 13, 2022
599
Sorry, but isn't an attack more likely to come post-VPN geolocation stuff to mask its origin? Therefore, cloud/server location is moot... IMHO.
 
  • Like
Reactions: [correlate]
F

ForgottenSeer 98186

MuzzMelbourne said:
Sorry, but isn't an attack more likely to come post-VPN geolocation stuff to mask its origin? Therefore, cloud/server location is moot... IMHO.
Click to expand...
Location matters. Cyber sec effeorts are not being directed at resource locations considered "safe," as was the case in the SolarWinds debacle. There just aren't enough cyber sec resources available to monitor the entire world.

Threat actors very rarely use VPN in their recon, attacks and c&c as it is easy to detect and block VPN traffic.

BryanB said:
require cloud providers to verify the identity of their users
Click to expand...
Oh there will be lots of whining and complaining about this requirement.
 
  • Like
Reactions: Trident and oldschool
You must log in or register to reply here.

Similar threads

upnorth
    • Like
    • +Reputation
    • Applause
Sweden’s Evroc going full Viking with Euro cloud to raid US providers
Replies
0
Views
449
News Archive
upnorth
upnorth
[correlate]
    • Like
Security News Senior US cybersecurity official reveals use of AI to counter hackers targeting critical infrastructure
Replies
0
Views
1,260
Security News
[correlate]
[correlate]
vtqhtr413
Technology Apple's $85 Billion-a-Year Services Business Faces Legal Reckoning
Replies
0
Views
230
Technology News
vtqhtr413
vtqhtr413

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top