Justice minister, DGA chief discuss partnership to boost digital judicial services    Netanyahu does not rule out further strikes on Hamas leaders    US farmers are being squeezed – and it's testing their deep loyalty to Trump    Romania condemns 'irresponsible' Moscow after Russian drone breaches its airspace    Kirk's assassination is forcing US politicians to make difficult choices about their safety    India players refused handshakes, says Pakistan coach    Final stage of Spanish Vuelta cycling race abandoned after disruption by pro-Palestine protesters    Mané fires Al Nassr past Al Kholood to keep perfect start as Ronaldo honored    Lacazette brace earns NEOM SC first Saudi Pro League win    Adolescence star Owen Cooper makes Emmys history at 15    Saudi liquidity grows 8.4%, reaching SR3.1 trillion in July 2025    Over 434,000 people acquire first aid skills during nationwide health campaign    Saudi Arabia's legislative advancement highlighted at International Conference on Judicial Training    Sudden swerving among 3 major causes of accidents in Riyadh in 2024    Princess Haifa emphasizes pivotal Saudi role in shaping future of tourism    Sahm Capital names Saudi Olympian Fayik Abdi as brand ambassador    SR9000 fine for copyright infringement using AI    King Charles and Prince Harry finally reunite after 19 months apart    Anastacia: Arnold Schwarzenegger made me sing Whatta Man 12 times    Thousands pay their last respects to Giorgio Armani, private funeral on Monday    The key to happiness    Sholay: Bollywood epic roars back to big screen after 50 years with new ending    Ministry launches online booking for slaughterhouses on eve of Eid Al-Adha    Shah Rukh Khan makes Met Gala debut in Sabyasachi    Exotic Taif Roses Simulation Performed at Taif Rose Festival    Asian shares mixed Tuesday    Weather Forecast for Tuesday    Saudi Tourism Authority Participates in Arabian Travel Market Exhibition in Dubai    Minister of Industry Announces 50 Investment Opportunities Worth over SAR 96 Billion in Machinery, Equipment Sector    HRH Crown Prince Offers Condolences to Crown Prince of Kuwait on Death of Sheikh Fawaz Salman Abdullah Al-Ali Al-Malek Al-Sabah    HRH Crown Prince Congratulates Santiago Peña on Winning Presidential Election in Paraguay    SDAIA Launches 1st Phase of 'Elevate Program' to Train 1,000 Women on Data, AI    41 Saudi Citizens and 171 Others from Brotherly and Friendly Countries Arrive in Saudi Arabia from Sudan    Saudi Arabia Hosts 1st Meeting of Arab Authorities Controlling Medicines    General Directorate of Narcotics Control Foils Attempt to Smuggle over 5 Million Amphetamine Pills    NAVI Javelins Crowned as Champions of Women's Counter-Strike: Global Offensive (CS:GO) Competitions    Saudi Karate Team Wins Four Medals in World Youth League Championship    Third Edition of FIFA Forward Program Kicks off in Riyadh    Evacuated from Sudan, 187 Nationals from Several Countries Arrive in Jeddah    SPA Documents Thajjud Prayer at Prophet's Mosque in Madinah    SFDA Recommends to Test Blood Sugar at Home Two or Three Hours after Meals    SFDA Offers Various Recommendations for Safe Food Frying    SFDA Provides Five Tips for Using Home Blood Pressure Monitor    SFDA: Instant Soup Contains Large Amounts of Salt    Mawani: New shipping service to connect Jubail Commercial Port to 11 global ports    Custodian of the Two Holy Mosques Delivers Speech to Pilgrims, Citizens, Residents and Muslims around the World    Sheikh Al-Issa in Arafah's Sermon: Allaah Blessed You by Making It Easy for You to Carry out This Obligation. Thus, Ensure Following the Guidance of Your Prophet    Custodian of the Two Holy Mosques addresses citizens and all Muslims on the occasion of the Holy month of Ramadan    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Companies face escalating cloud & supply chain risk
Published in The Saudi Gazette on 11 - 12 - 2019

Trend Micro Incorporated, a global leader in cybersecurity solutions, on Wednesday announced its 2020 predictions report, which states that organizations will face a growing risk from their cloud and the supply chain. The growing popularity of cloud and DevOps environments drive business agility while exposing organizations, from enterprises to manufacturers, to third-party risk.
"As we enter a new decade, organizations of all industries and sizes will increasingly rely on third party software, open-source, and modern working practices to drive the digital innovation and growth they crave," said Dr. Moataz Bin Ali, Vice President, Trend Micro, Middle East and North Africa. "Our threat experts predict that this fast growth and change will bring new risks of supply chain attacks. From the cloud layer all the way down to the home network, IT security leaders will need to reassess their cyber risk and protection strategy in 2020."
Attackers will increasingly go after corporate data stored in the cloud via code injection attacks such as deserialization bugs, cross-site scripting and SQL injection. They will either target cloud providers directly or compromise third-party libraries to do this.
In fact, the increasing use of third-party code by organizations employing a DevOps culture will increase business risk in 2020 and beyond. Compromised container components and libraries used in serverless and microservices architectures will further broaden the enterprise attack surface, as traditional security practices struggle to keep up.
Managed service providers (MSPs) will be targeted in 2020 as an avenue for compromising multiple organizations via a single target. They will not only be looking to steal valuable corporate and customer data, but also install malware to sabotage smart factories and extort money via ransomware.
The new year will also see a relatively new kind of supply chain risk, as remote workers introduce threats to the corporate network via weak Wi-Fi security. Additionally, vulnerabilities in connected home devices can serve as a point of entry into the corporate network.
Amidst this ever-volatile threat landscape, Trend Micro recommends organizations:
• Improve due diligence of cloud providers and MSPs
• Conduct regular vulnerability and risk assessments on third parties
• Invest in security tools to scan for vulnerabilities and malware in third-party components
• Consider Cloud Security Posture Management (CSPM) tools to help minimize the risk of misconfigurations
• Revisit security policies regarding home and remote workers — SG


Clic here to read the story from its source.