IT & Telecommunications

Tenable sounds alarm on toxic cloud exposures

Nearly four in 10 organisations globally are leaving themselves exposed at the highest levels due to the ‘toxic cloud triad’ of publicly exposed, critically vulnerable and highly privileged cloud workloads.

This is according to Tenable, the exposure management company, which released its 2024 Tenable Cloud Risk Report, which examines the critical risks at play in modern cloud environments.

Each of these misalignments alone introduces risk to cloud data, but the combination of all three drastically elevates the likelihood of exposure access by cyber attackers.

Deep dive

Security gaps caused by misconfigurations, risky entitlements and vulnerabilities combine to dramatically increase cloud risk. The Tenable Cloud Risk Report provides a deep dive into the most pressing cloud security issues observed in the first half of 2024, highlighting areas such as identities and permissions, workloads, storage resources, vulnerabilities, containers and Kubernetes. It also offers mitigation guidance for organisations seeking ways to limit exposures in the cloud.

Publicly exposed and highly privileged cloud data lead to data leaks. Critical vulnerabilities exacerbate the likelihood of incidents. The report reveals that a staggering 38% of organisations have cloud workloads that meet all three of these toxic cloud triad criteria, representing a perfect storm of exposure for cyber attackers to target. When bad actors exploit these exposures, incidents commonly include application disruptions, full system takeovers, and DDoS attacks that are often associated with ransomware. Scenarios like these could devastate an organisation, with the 2024 average cost of a single data breach approaching $5 million.

Additional key findings

●84% of organisations have risky access keys to cloud resources: The majority of organisations (84.2%) possess unused or longstanding access keys with critical or high severity excessive permissions, a significant security gap that poses substantial risk.

●23% of cloud identities have critical or high severity excessive permissions: Analysis of Amazon Web Services (AWS), Google Cloud Platform (GCP) and Microsoft Azure reveals that 23% of cloud identities, both human and non-human, have critical or high severity excessive permissions.

●Critical vulnerabilities persist: Notably, CVE-2024-21626, a severe container escape vulnerability that could lead to the server host compromise, remained unremediated in over 80% of workloads even 40 days after its publishing.

●74% of organisations have publicly exposed storage: 74% of organisations have publicly exposed storage assets, including those in which sensitive data resides. This exposure, often due to unnecessary or excessive permissions, has been linked to increased ransomware attacks.

●78% of organisations have publicly accessible Kubernetes API servers: Of these, 41% also allow inbound internet access. Additionally, 58% of organisations have cluster-admin role bindings — which means that certain users have unrestricted control over all the Kubernetes environments.

Access exposures

“Our report reveals that an overwhelming number of organisations have access exposures in their cloud workloads of which they may not even be aware,” said Shai Morag, chief product officer, Tenable.

“It’s not always about bad actors launching novel attacks. In many instances, misconfigurations and over-privileged access represent the highest risk for cloud data exposures. The good news is, many of these security gaps can be closed easily once they are known and exposed.”

The report reflects findings by the Tenable Cloud Research team based on telemetry from billions of cloud resources across multiple public cloud repositories, analysed from January 1 through June 30, 2024.--TradeArabia News Service

IT & Telecommunications

Tenable sounds alarm on toxic cloud exposures

DFF launches Gig Economy and PropTech Sandboxes

Mastercard launches local technology infrastructure in KSA

IBM introduces Granite 3.0 high performing AI models

Emerson to show Floor to Cloud packing at PACK EXPO

PwC Middle East, Liferay to deliver full-spectrum digital services

85m EVs will be on the road by end of 2025: Gartner

Batelco to deliver smart building solutions at District Courtyard Mall

SSAB, Parmaco to build first fossil-free steel concept building

Oman Data Park signs cybersecurity deal with Seclore

Sharjah Research Innovation Park inks partnership with Builder.ai

5G emerges as a focal point at Gitex Global 2024

du and Netcracker Technology announce partnership

Schneider expands local manufacturing capabilities in UAE

Ericsson and e& international sign AI MoU

InfraX and Zoho to accelerate IoT innovation in the UAE

e& UAE launches next generation connectivity platform

e& UAE showcases the world's first Wi-Fi 8 prototype

Key deal to enhance digital experience of Mercedes-Benz customers in UAE

Malware detections in UAE soar 65.3pc: Acronis

Moro Hub presents RheinBrucke Green Certificate

DECCA, Moro Hub MoU targets sustainable practices

AI will replace tasks, not jobs, says Stanford professor

Mashreq expands collaboration with Oracle

Elm signs agreement with Riyadh Development Company

Batelco and Thales tie up for IoT connectivity platform

Taiba picks Trax Group for digital transformation

Cyberattacks in the Middle East tripled in Q1 2024: study

e& UAE, Airbus partner to deliver communication solutions

Core42 launches Inference-as-a-Service with Qualcomm

India signs communications, space tech deal with Saudi Arabia