Eskenzi PR ad banner Eskenzi PR ad banner
  • About Us
Saturday, 30 September, 2023
IT Security Guru
Eskenzi PR banner
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Netskope Report Reveals Nearly 10 Percent of DLP Violations Come From Collaboration Cloud Services

by The Gurus
June 13, 2017
in Editor's News
Share on FacebookShare on Twitter

Netskope, the leader in cloud security, today announced the release of the June 2017 Netskope Cloud Report™ on enterprise cloud service usage and trends. According to the report, cloud DLP policy violations in collaboration services like Slack and HipChat are on the rise, accounting for nearly 10 percent of total violations this quarter. These services have skyrocketed in popularity as methods of sharing and downloading data, emphasising the need for enterprises to put policies in place to ensure this data is safe and secure.
 
Collaboration Service Violations on the Rise
For the first time, Netskope investigated collaboration services as a separate category for cloud DLP policy violations, as these services continue to rise in popularity within organisations. According to the report, collaboration services make up 9.8 percent of violations.
 
This quarter, webmail remained the leader in DLP violations with 43.3 percent of violations. Cloud storage came in second with 30.6 percent and other cloud service categories combined to make up 16.3 percent. DLP violations by activity was similar to last quarter’s trends with uploads making up the majority at 65 percent, followed by send at 17.5 percent, download at 16.2 percent, and other at 1.3 percent.
 
Cloud services still underprepared for GDPR compliance
With the deadline to comply with the European Union General Data Protection Regulation (GDPR) less than a year away, organisations need to ensure they are adopting security protocols that both understand the data flow of all PII (personally identifiable information) in the cloud as well as secure that data. However, there has been little change in GDPR-readiness metrics – 66.9 percent of cloud services do not specify that the customer owns the data in their terms of service, 89.9 percent do not support encryption of data at rest, and 40.7 percent of cloud services replicate data in geographically dispersed data centres.
 
Organisations that process EU citizens’ data will need to ensure they are placing the appropriate security policies and processes to avoid fines that total up to 20 million euros or up to 4 percent of the organisation’s turnover.
 
Hybrid Cloud-and-Web Threats on the Rise
This report introduced the concept of a hybrid threat — malware that use both cloud and web services to deliver malicious payloads to users or perform an attack on a system or a user — an increasingly relevant threat faced by organisations as the lines between web and cloud services converge. These threats may be delivered in a variety of ways, from phishing emails to compromised websites, with command and control servers hosted in places like IaaS, cloud storage services, and websites. This type of threat has increased in occurrence across customers over time, occurring in 3.3 percent of customers this quarter.
 
“Collaboration services are quickly displacing more traditional ways of communication and collaboration like email, and that means that more data is being shared inside of those services,” said Sanjay Beri, founder and CEO, Netskope. “It’s critical that organisations implement solutions that afford real-time visibility and control, data loss prevention, and threat protection for these services – and the many ecosystem services they connect to – to ensure that collaboration is not hindered and their sensitive data remains secure.”
 
Additional Findings:

  • Cloud services per enterprise drops slightly: This quarter, the average amount of cloud services per enterprise was 1,053, a slight decrease from 1,071 last quarter. This is the first decline in usage since Netskope began tracking cloud services per enterprise, and may be attributable to the saturation of service usage across organisations. The percentage of services that are not enterprise ready remained steady this quarter at 93.6 percent.
  • Adware surges to first place in cloud malware detections: This quarter, adware led the pack with 31.7 percent of cloud malware detections. Backdoors dropped to second place with 16.9 percent of detections, down from 37.1 percent last quarter. Following backdoors was Mac malware at 11.0 percent, mobile malware at 15.3 percent, and generic detections at 15.3 percent. The common ransomware delivery vehicles totalled 9.8 percent, consisting of Microsoft Office macros with 4.3 percent, JavaScript 2.4 percent, PDF exploits 1.3 percent, and Flash exploits 0.3 percent.
  • Slack continues to rise on top 20 list of cloud services: Slack moved up to number 12 (from number 15 last quarter), steadily climbing the list of top 20 most used services as more organisations implement the popular collaboration service.

 
Average Cloud Services Per Enterprise by Category
For the first time, the manufacturing industry had the highest average amount of cloud services used, at 1,222 this quarter. Retail, restaurants, and hospitality fell to second place with 1,131. Financial services, banking, and insurance followed at 1,039, with healthcare and life sciences and technology and IT services coming in at 1,014 and 821, respectively.
 
Within cloud service categories, HR services took the lead with an average of 98, while marketing fell to second place at 87. And, as with previous quarters, the percentage that are not enterprise-ready has held steady at the respective numbers. With the rise of cloud malware and hackers compromising organisations from cloud services, granular controls and traffic inspection from all locations (whether on-premises or off), devices, and apps (sync clients and native mobile apps included) for threats will be critical.
 

Service Category Average # cloud services %NER
HR 98 96%
Marketing 87 97%
Collaboration 71 87%
Finance/Accounting 63 96%
CRM 43 94%
Software development 40 96%
Productivity 38 95%
Social 29 91%
Cloud storage 26 73%
IT Service/Application Management 25 98%
FacebookTweetLinkedIn
Tags: CloudCybergdprsecurityTechnology
ShareTweet
Previous Post

Your Windows firewall may be useless as malware can bypass it

Next Post

Life Imitating Art: Artificial Intelligence technology won’t progress unless the public’s fears subside

Recent News

Guide to ransomware and how to detect it

Guide to ransomware and how to detect it

September 28, 2023
software security

Research reveals 80% of applications developed in EMEA contain security flaws

September 27, 2023
Cyber insurance

Half of organisations with cyber insurance implemented additional security measures to qualify for the policy or reduce its cost

September 27, 2023
Fraud and online banking

Akamai Research Finds the Number of Cyberattacks on European Financial Services More Than Doubled in 2023

September 27, 2023

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

This site uses functional cookies and external scripts to improve your experience.

Privacy settings

Privacy Settings / PENDING

This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.

NOTE: These settings will only apply to the browser and device you are currently using.

GDPR Compliance

Powered by Cookie Information