Saudi-Pakistan Investment Forum discusses boosting trade and investment partnerships    Crown Prince concludes MEGISummit: We will work seriously to achieve our goals    EXIM Bank signs MoU with Japanese Sumitomo Mitsui Banking Corporation    Saudi Pavilion at EXPO 2020 marks 76th anniversary of UN establishment    Greece premier praises importance of Middle East Green Initiative Summit    Saudi Arabia calls for restraint, de-escalation in Sudan    Riyadh Season hosts Barcelona and Boca Juniors on Maradona Cup night    Monshaat partners with MITEF Saudi & Arab Startup Competition    HSBC CEO — 2021 set to be first trillion-dollar year for green bonds    Riyadh dominates GCC rankings in human capital    All eyes on Jeddah! World's best golfers set for climax of Aramco Team Series    Crown Prince launches series of regional initiatives for climate action at MEGI Summit Ushering in a new green era for Mideast region    WFP's Beasley lauds Saudi Arabia's role in providing aid to millions around the globe    RedSeaIFF announces best short films by emerging Saudi filmmakers 15 shorts make up New Saudi/New Cinema slate    Pakistan hammer India by 10 wickets to clinch T20 win    Michael Jordan's trainers sell for record $1.47m at auction    China postpones Beijing marathon due to Covid surge    US actor James Michael Tyler dies aged 59    Bride's fingerprint not required in revised e-marriage contract    'Easy On Me': Adele returns to UK number one    'Be a Star' — WWE stars fight cyberbullying in Riyadh    Bollywood superstar's son denied bail in drugs case    Saudis, expats mourn death of prominent Filipino preacher in Riyadh    Bollywood actor Sidharth Shukla dies at 40    Custodian of the Two Holy Mosques Directs KSrelief to Urgently Provide Malaysia with Medical, Preventive Equipment and Supplies to Address COVID-19 Pandemic    Custodian of the Two Holy Mosques Congratulates President of Maldives on Independence Day    Weather Forecast for Sunday    RSNF Commander Patronizes Ceremonial Launching of His Majesty's Ship "Jazan"    OIC Condemns Houthi Attempts to Target Civilians in Saudi Arabia    Philippines evacuates thousands as monsoon rains flood cities, provinces    Heavy rain in India triggers floods, landslides; at least 125 dead    U.S. Records 64,321 New Infections of Coronavirus    Without Fans, Tokyo Olympics Kicked Off    Pilgrims Perform Dhuhr and Asr Prayers at Arafat Holy Site    Dr. Mohammed Sulaiman Al-Jasser, Saudi Arabia's Pick to Chair IsDB Group for the next five years, unanimously approved by BoG Committee of Procedures    Saudi Press: Fitch affirms Saudi Credit Rating at "A" with a revised outlook to stable from negative    Handled Cargo at Saudi Ports Increases during June 2021    SDAIA, DARP & STC Launch Pilgrim's Smart Bracelet (NUSK)    2 Goals by Diaz Gives Colombia 3rd Place at Copa America    Saudi Cinema Night at Arab World Institute in Paris Kicks Off    KSU Leads Joint International Scientific Project for Early Detection of Breast Cancer    Saudi Arabia to Participate in Cannes Film Festival 2021    Arab Cup U-17 Championship Draw Saudi Arabia, Morocco, Palestine, Kuwait, in the 1st Group    AWI Hosts Saudi Cinema Nights in Paris    Brazil Beats Chile at Copa America Despite 2nd-Half Red Card    Council of Senior Scholars: Muslim Brothers' Group Don't Represent Method of Islam, rather only Follows its Partisan Objectives, Violating our Graceful Religion    Eid Al-Adha Prayer Performed at the Grand Holy Mosque    Pilgrims Perform Dhuhr and Asr Prayers in Arafat Holy Site    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Companies face escalating cloud & supply chain risk
Published in The Saudi Gazette on 11 - 12 - 2019

Trend Micro Incorporated, a global leader in cybersecurity solutions, on Wednesday announced its 2020 predictions report, which states that organizations will face a growing risk from their cloud and the supply chain. The growing popularity of cloud and DevOps environments drive business agility while exposing organizations, from enterprises to manufacturers, to third-party risk.
"As we enter a new decade, organizations of all industries and sizes will increasingly rely on third party software, open-source, and modern working practices to drive the digital innovation and growth they crave," said Dr. Moataz Bin Ali, Vice President, Trend Micro, Middle East and North Africa. "Our threat experts predict that this fast growth and change will bring new risks of supply chain attacks. From the cloud layer all the way down to the home network, IT security leaders will need to reassess their cyber risk and protection strategy in 2020."
Attackers will increasingly go after corporate data stored in the cloud via code injection attacks such as deserialization bugs, cross-site scripting and SQL injection. They will either target cloud providers directly or compromise third-party libraries to do this.
In fact, the increasing use of third-party code by organizations employing a DevOps culture will increase business risk in 2020 and beyond. Compromised container components and libraries used in serverless and microservices architectures will further broaden the enterprise attack surface, as traditional security practices struggle to keep up.
Managed service providers (MSPs) will be targeted in 2020 as an avenue for compromising multiple organizations via a single target. They will not only be looking to steal valuable corporate and customer data, but also install malware to sabotage smart factories and extort money via ransomware.
The new year will also see a relatively new kind of supply chain risk, as remote workers introduce threats to the corporate network via weak Wi-Fi security. Additionally, vulnerabilities in connected home devices can serve as a point of entry into the corporate network.
Amidst this ever-volatile threat landscape, Trend Micro recommends organizations:
• Improve due diligence of cloud providers and MSPs
• Conduct regular vulnerability and risk assessments on third parties
• Invest in security tools to scan for vulnerabilities and malware in third-party components
• Consider Cloud Security Posture Management (CSPM) tools to help minimize the risk of misconfigurations
• Revisit security policies regarding home and remote workers — SG


Clic here to read the story from its source.