With recent revelations about NSA surveillance programs including PRISM and
now XKeyscore, many organizations are concerned about the privacy of customer
data and other sensitive business information being put on the cloud. Some
are predicting that the public uncovering of these programs will lead to a
decrease in use of U.S. cloud providers. It's been reported though, that
other countries are obtaining information from the NSA's surveillance,
including the UK, and there are regularly stories about China and Russia
maintaining similar surveillance programs, making the avoidance of just U.S.
vendors not a viable strategy for protecting data.
Anyone engaging in today's cyber environment realizes that there are also
non-governmental organizations and individuals attempting to gain access to
business and individual information online, perhaps with a far more malicious
For enterprises moving more business and customer data to the cloud,
investigating and selecting an online storage solution can be a challenging
task. A primary concern is the level of data security offered by the sites
being considered. While the theme holds true across all of the major
providers (Box, DropBox, SkyDrive), for the purpose of illustration I'll
focus on DropBox since it is arguably the most popular site boasting over 100
Here is where some of the concerns begin; DropBox experienced a major
security breach in July 2012, specifically involving user pa... (more)
The latest reports surrounding the surveillance programs of the NSA and their
International counterparts reveal that these agencies have been able to
decode the encryption methods some enterprises and organizations use to keep
their online data private.
While these headlines are likely disconcerting for those operating in the
U.S. or using software applications from cloud providers, as stated in our
recent press release and blog post, enterprises do not need to allow their
fears to slow down or stop their cloud adoption.
Methods for Securing Data Online
More attention has been t... (more)
New reports show that when the NSA was conducting its surveillance programs,
perhaps including XKeyscore and PRISM, the agency was not following its own
legal guidelines. These reports, based on internal NSA audit reports leaked
via the "Snowden leak", showing the NSA violated its own privacy rules and
overstepped its authority thousands of times in the past few years, will
serve to further unsettle many enterprises abroad, even leading some to
conclude that utilizing U.S. cloud applications is not worth risking
unauthorized data access by the government and others.
Recent repo... (more)
The convenience, efficiency and cost benefits cloud computing offers
organizations has made moving healthcare data and records to the cloud make
sense for hospitals, physicians and other healthcare providers. Security and
data breaches are a concern for any industry utilizing the cloud, but
healthcare unfortunately seems to be particularly vulnerable to attacks. The
Washington Post recently reported that The Department of Homeland Security is
fearful that the health industry is "inviting" an attack with its out-of-date
policies and lack of oversight.
A recent WIRED article discu... (more)