Listen Up Big hole in cloud security :(

jeallen01 · Feb 28, 2019

https://www.eeweb.com/profile/loucovey/articles/cloudborne-punches-hole-in-cloud-security

Terrifying for anyone who relies on "The Cloud" for "safe" storage of their precious data - and, apparently, the vulnerability also exists for social media companies like Facebook, Twitter, and LinkedIn. !!!!! :angry:

I have the "bare minimum" of data on Facebook, no Twitter (or Facetime, Instagram, etc., etc.,....) a/c's, and will be closing my LinkedIn a/c PDQ (not there's much there that is probably not also elsewhere on agency sites (basic address and career info, etc.,)

Channel Hopper · Feb 28, 2019

By 'cloud' do you mean securing sensitive data outside your local intranet ?

jeallen01 · Feb 28, 2019

Channel Hopper said:
By 'cloud' do you mean securing sensitive data outside your local intranet ?

TBH, what else would I mean (and I thought that that would have been perfectly obvious in the context of the link given in Post#1) ????? :rolleyes:

Channel Hopper · Feb 28, 2019

1) One would have to be an absolute tool to use a social media site invitation for storage of sensitive data.

2) One would also need to check with their IT staff to verify the company intranet is wired only, web based storage can be called intranet.

3) Have you been at the sauce tonight ?

jeallen01 · Mar 1, 2019

Channel Hopper said:
1) One would have to be an absolute tool to use a social media site invitation for storage of sensitive data.

THIS "One" isn't, but many, many "Others" ARE - think F/B, One Drive, Google Drive (etc.), and then there are all those "keep you safe and avoiding losing your passwords clould-based password managers" and proprietary on-line cloud storage backup offerings (which I wouldn't use anyway because once you start using one of those then you are probably locked into big on-going annual maintenance payments!). :rolleyes:

Channel Hopper said:
2) One would also need to check with their IT staff to verify the company intranet is wired only, web based storage can be called intranet.

Totally true for company's intranets, but most of their IT staff - including the head honchos - have probably never looked too much further than the providers's names/reputations AND the "bottom lines"!

OTOH, if you're talking about local "home intranets" then they should be easier to control - but in fact they most certainly aren't for most people who have a whole load of various devices connected to their home (mainly wireless) networks but have no idea how they work and how to protect them.

And would I let an "Alexa" or similar device into this house? Not bloody likely, and I'll have to be very careful with the next TV (and it might be one from LG) I buy to switch off/cover up any potential "spying devices"!

Channel Hopper said:
3) Have you been at the sauce tonight ?

No more than usual

, but don't forget that that I didn't "invent" / "speculate about" the info behind the link in post #1 - it came via the EEWeb site!

Lazarus · Mar 1, 2019

Such is my own concern for security and privacy, I very rarely get even a rogue EMail.

jeallen01 · Mar 1, 2019

Lazarus said:
Such is my own concern for security and privacy, I very rarely get even a rogue EMail.

Yeah, we know - you've told us that many times!

OTOH, Yes I do get a lot of rogue emails - but I strongly suspect that the email address in question was one of those stolen in the huge data breach of a big website that was revealed some weeks ago. All the potentially "vulnerable" online a/c's have now been moved to another address that is hardly, if ever, spammed - at least for the moment. :rolleyes:

Lazarus · Mar 1, 2019

jeallen01 said:
Yeah, we know - you've told us that many times!

OTOH, Yes I do get a lot of rogue emails - but I strongly suspect that the email address in question was one of those stolen in the huge data breach of a big website that was revealed some weeks ago. All the potentially "vulnerable" online a/c's have now been moved to another address that is hardly, if ever, spammed - at least for the moment.

Glad to hear you seem to be getting on top of it ........

Archive9 · Mar 1, 2019

We all know that anything in the "cloud" is stored on someone else's computer.

So by uploading the information to the "cloud" you have comparmised the security of the data in the first place.

jeallen01 · Mar 1, 2019

Chris1979 said:
We all know that anything in the "cloud" is stored on someone else's computer.

So by uploading the information to the "cloud" you have comparmised the security of the data in the first place.

Trouble is that the vast majority of people don't realise that and/or "don't want /can't be bothered" to find out. :rolleyes:

Listen Up Big hole in cloud security :(

jeallen01

Specialist Contributor

Channel Hopper

Suffering fools, so you don't have to.

jeallen01

Specialist Contributor

Channel Hopper

Suffering fools, so you don't have to.

jeallen01

Specialist Contributor

Lazarus

Retired Moderator

jeallen01

Specialist Contributor

Lazarus

Retired Moderator

Archive9

Archived

jeallen01

Specialist Contributor