News Insights: Dozens of companies leaked sensitive data thanks to misconfigured Box accounts
Dozens of companies leaked sensitive data thanks to misconfigured Box accounts
Security researchers have found dozens of companies inadvertently leaking sensitive corporate and customer data because staff are sharing public links to files in their Box enterprise storage accounts that can easily be discovered. The discoveries were made by Adversis, a cybersecurity firm, which â¦
FULL ARTICLE: Dozens of companies leaked sensitive data thanks to misconfigured Box accounts
NEWS INSIGHTS:
According to Pravin Kothari, CEO of CipherCloud, “In the past, applications were inside the perimeter so it was not a huge issue if your applications such as SharePoint, Exchange, or File server were not properly configured. That’s no longer the case with cloud applications such as Box, AWS S3 and Salesforce. A single misconfiguration can cause havoc as all your sensitive information could be exposed to the public or hackers by a user’s inadvertent action. Not only do you have to deal with reputational damage, but if the exposed data had regulatory requirements then you’re also looking at stiff penalties. It’s prudent for businesses to take a strategic approach to cloud security to govern all their cloud applications, scan content, and take remedial actions such as applying rights management when sharing sensitive files.”
Hugh Taylor
Hugh Taylor is a Certified Information Security Manager (CISM). In addition to editing Journal of Cyber Policy, he writes about cybersecurity, compliance and enterprise technology for such clients as Microsoft, IBM, SAP, HPE, Oracle, Google and Advanced Micro Devices. Prior to launching his freelance writing career, he served in executive roles at Microsoft, IBM and several venture-backed technology startups.