- Security TWENTY
- Women in Security
Almost two-thirds of small- to medium-sized businesses (SMBs) believe that more work needs to be done to protect their data in the cloud, according new research from a cybersecurity firm.
Since moving to the cloud for storage, 29pc of SMBs have suffered a breach of files or folders, according to the same research. Almost a third (31pc) said that since moving to the platform, detecting unauthorised access has become much more difficult, and 22pc admitted that hackers have gained external access using an employee’s login credentials.
The new report from IS Decisions, “Under a cloud of suspicion,” is based on research with 300 heads of security in small- to medium-sized businesses across the UK, US and France who are using Dropbox for Business, Google Drive, Box and Microsoft OneDrive. It examines perceptions of cloud storage security and how these perceptions are driving data-related security decisions.
Also, according to the report, just 52pc of SMBs actively monitor sensitive files for unauthorised access, while the rest only do so either on an ad hoc basis or after a breach has occurred — or in some cases, not at all. Furthermore, while many SMBs are managing a hybrid-approach whereby they use a combination of on-premises and cloud storage, 56pc of those surveyed say that it’s difficult to manage the security of data living in these hybrid infrastructures.
IS Decisions founder and CEO François Amigorena said: “There’s no doubt that the cloud has considerably enhanced the way that SMBs do business. But businesses who have moved to the cloud for storage are finding it harder to detect unauthorised access to company files and folders. The ease of sharing data among teams and simple integrations their storage can have with other cloud applications significantly increases the prospect of unauthorised access. Without the right access controls in place, the risk of employee credentials being misused or stolen makes detecting unauthorised access even harder.
“The last thing any business wants is to suffer a breach of data. Therefore, there needs to be a stronger and more efficient way to ensure that data in the cloud remains safe.”