The article states that there are three main causes of data breaches in 2019 as following;
- Misconfigured cloud storage: most of companies don’t use encryption to protect data in cloud or don’t put any security access control as a standard. What’s more, they don’t concern about term and agreement.
- Unprotected code repositories: external software developers are the weakness because they lack of security traning awareness which allows attackers easily exploit to the systems.
- Vulnerable open source software: The companies still have the vulnerabilities of open source component, libraries, and frameworks. Patches are not regularly updated.
Therefore, five recommendations are provided;
- Maintain an up2date and holistic inventory of your digital assets
- Monitor your external attack surface and risk exposure
- Keep your software up2date, implement patch management and automated patching
- Prioritize your testing and remediation efforts based on risks and threats
- Keep an eye on Dark Web and monitor data leaks.
Source: https://thehackernews.com/2019/10/data-breach-protection.html
Leave a Reply
You must be logged in to post a comment.