Cloud Attack Vectors: Building Effective Cyber-Defense Strategies to Protect Cloud Resources
Cyberattacks continue to increase in volume and sophistication, targeting everything owned, managed, and serviced from the cloud. Today, there is widespread consensus—it is not a matter of if, but rather when an organization will be breached. Threat actors typically target the path of least resistan...
Gespeichert in:
| Hauptverfasser: | , , |
|---|---|
| Format: | Buch |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | |
| container_title | |
| container_volume | |
| creator | Haber, Morey J Chappell, Brian Hills, Christopher |
| description | Cyberattacks continue to increase in volume and sophistication, targeting everything owned, managed, and serviced from the cloud. Today, there is widespread consensus—it is not a matter of if, but rather when an organization will be breached. Threat actors typically target the path of least resistance. With the accelerating adoption of cloud technologies and remote work, the path of least resistance is shifting in substantive ways. In recent years, attackers have realigned their efforts, focusing on remaining undetected, monetization after exploitation, and publicly shaming organizations after a breach. New, innovative, and useful products continue to emerge and offer some cloud protection, but they also have distinct limitations. No single, standalone solution or strategy can effectively protect against all cloud attack vectors or identify all malicious activity. The simple fact is that the cloud is based on a company's assets being offered as services.As a result, the best security any organization can achieve is to establish controls and procedures in conjunction with services that are licensed in the cloud. Cloud Attack Vector s details the risks associated with cloud deployments, the techniques threat actors leverage, the empirically-tested defensive measures organizations should adopt, and shows how to improve detection of malicious activity. What You'll Learn * Know the key definitions pertaining to cloud technologies, threats, and cybersecurity solutions * Understand how entitlements, permissions, rights, identities, accounts, credentials, and exploits can be leveraged to breach a cloud environment * Implement defensive and monitoring strategies to mitigate cloud threats, including those unique to cloud and hybrid cloud environments * Develop a comprehensive model for documenting risk, compliance, and reporting based on your cloud implementation Who This Book Is For New security professionals, entry-level cloud security engineers, managers embarking on digital transformation, and auditors looking to understand security and compliance risks associated with the cloud |
| doi_str_mv | 10.1007/978-1-4842-8236-6 |
| format | Book |
| fullrecord | <record><control><sourceid>proquest_skill</sourceid><recordid>TN_cdi_skillsoft_books24x7_bks000163364</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>EBC7048657</sourcerecordid><originalsourceid>FETCH-LOGICAL-a21323-a752b10b8a6da267b9f085ebbc4d63b8028fdd880af4bed663ac05baacb4bc213</originalsourceid><addsrcrecordid>eNplkDtPwzAURo0QCCjdWJAYOiAhhtDrR2xnbKPykCqxoK6WnTilxKpL7BZ-PkmbBZhsfzrf8bURusbwgAHEOBMywQmTjCSSUJ7wIzRsM9wlXcCP_5xP0QWmVLCs3cMZGobwAQBEUMgknKOr3PltOZrEqIt6tLBF9E24RCeVdsEO-3WAFo-zt_w5mb8-veSTeaIJpoQmWqTEYDBS81ITLkxWgUytMQUrOTUSiKzKUkrQFTO25JzqAlKjdWGYKVrHAN0dxKFeORd8FZXxvg6EfQtl6tBOijmlnLXk_YHUobZf4d27GNTO2T2ufr24Zce9ddOs1kvbHKQKg-r-sKMVVh2vuoLqGrd9Q1e6WfX8jvwT9-NuGv-5tSGq_f2FXcdGOzWb5gKY5KloyZuetI2zS98bWYoZpJz-APC8fsQ</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>book</recordtype><pqid>EBC7048657</pqid></control><display><type>book</type><title>Cloud Attack Vectors: Building Effective Cyber-Defense Strategies to Protect Cloud Resources</title><source>O'Reilly Online Learning: Academic/Public Library Edition</source><creator>Haber, Morey J ; Chappell, Brian ; Hills, Christopher</creator><creatorcontrib>Haber, Morey J ; Chappell, Brian ; Hills, Christopher</creatorcontrib><description>Cyberattacks continue to increase in volume and sophistication, targeting everything owned, managed, and serviced from the cloud. Today, there is widespread consensus—it is not a matter of if, but rather when an organization will be breached. Threat actors typically target the path of least resistance. With the accelerating adoption of cloud technologies and remote work, the path of least resistance is shifting in substantive ways. In recent years, attackers have realigned their efforts, focusing on remaining undetected, monetization after exploitation, and publicly shaming organizations after a breach. New, innovative, and useful products continue to emerge and offer some cloud protection, but they also have distinct limitations. No single, standalone solution or strategy can effectively protect against all cloud attack vectors or identify all malicious activity. The simple fact is that the cloud is based on a company's assets being offered as services.As a result, the best security any organization can achieve is to establish controls and procedures in conjunction with services that are licensed in the cloud. Cloud Attack Vector s details the risks associated with cloud deployments, the techniques threat actors leverage, the empirically-tested defensive measures organizations should adopt, and shows how to improve detection of malicious activity. What You'll Learn * Know the key definitions pertaining to cloud technologies, threats, and cybersecurity solutions * Understand how entitlements, permissions, rights, identities, accounts, credentials, and exploits can be leveraged to breach a cloud environment * Implement defensive and monitoring strategies to mitigate cloud threats, including those unique to cloud and hybrid cloud environments * Develop a comprehensive model for documenting risk, compliance, and reporting based on your cloud implementation Who This Book Is For New security professionals, entry-level cloud security engineers, managers embarking on digital transformation, and auditors looking to understand security and compliance risks associated with the cloud</description><edition>1</edition><identifier>ISBN: 9781484282366</identifier><identifier>ISBN: 1484282361</identifier><identifier>ISBN: 9781484282359</identifier><identifier>ISBN: 1484282353</identifier><identifier>EISBN: 9781484282366</identifier><identifier>EISBN: 1484282361</identifier><identifier>DOI: 10.1007/978-1-4842-8236-6</identifier><identifier>OCLC: 1337493660</identifier><identifier>LCCallNum: TK1-9971 .H33 2022</identifier><language>eng</language><publisher>Berkeley, CA: Apress</publisher><subject>Cloud computing ; Computer communication systems ; Computer Science ; Computer security ; Computer system failures ; COMPUTERS ; Cyberterrorism ; Professional and Applied Computing ; Professional Computing ; Systems and Data Security</subject><creationdate>2022</creationdate><tpages>492</tpages><format>492</format><rights>Morey J. Haber, Brian Chappell, Christopher Hills 2022</rights><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Uhttps://media.springernature.com/w306/springer-static/cover-hires/book/978-1-4842-8236-6</thumbnail><link.rule.ids>306,776,780,782,24741,27902</link.rule.ids></links><search><creatorcontrib>Haber, Morey J</creatorcontrib><creatorcontrib>Chappell, Brian</creatorcontrib><creatorcontrib>Hills, Christopher</creatorcontrib><title>Cloud Attack Vectors: Building Effective Cyber-Defense Strategies to Protect Cloud Resources</title><description>Cyberattacks continue to increase in volume and sophistication, targeting everything owned, managed, and serviced from the cloud. Today, there is widespread consensus—it is not a matter of if, but rather when an organization will be breached. Threat actors typically target the path of least resistance. With the accelerating adoption of cloud technologies and remote work, the path of least resistance is shifting in substantive ways. In recent years, attackers have realigned their efforts, focusing on remaining undetected, monetization after exploitation, and publicly shaming organizations after a breach. New, innovative, and useful products continue to emerge and offer some cloud protection, but they also have distinct limitations. No single, standalone solution or strategy can effectively protect against all cloud attack vectors or identify all malicious activity. The simple fact is that the cloud is based on a company's assets being offered as services.As a result, the best security any organization can achieve is to establish controls and procedures in conjunction with services that are licensed in the cloud. Cloud Attack Vector s details the risks associated with cloud deployments, the techniques threat actors leverage, the empirically-tested defensive measures organizations should adopt, and shows how to improve detection of malicious activity. What You'll Learn * Know the key definitions pertaining to cloud technologies, threats, and cybersecurity solutions * Understand how entitlements, permissions, rights, identities, accounts, credentials, and exploits can be leveraged to breach a cloud environment * Implement defensive and monitoring strategies to mitigate cloud threats, including those unique to cloud and hybrid cloud environments * Develop a comprehensive model for documenting risk, compliance, and reporting based on your cloud implementation Who This Book Is For New security professionals, entry-level cloud security engineers, managers embarking on digital transformation, and auditors looking to understand security and compliance risks associated with the cloud</description><subject>Cloud computing</subject><subject>Computer communication systems</subject><subject>Computer Science</subject><subject>Computer security</subject><subject>Computer system failures</subject><subject>COMPUTERS</subject><subject>Cyberterrorism</subject><subject>Professional and Applied Computing</subject><subject>Professional Computing</subject><subject>Systems and Data Security</subject><isbn>9781484282366</isbn><isbn>1484282361</isbn><isbn>9781484282359</isbn><isbn>1484282353</isbn><isbn>9781484282366</isbn><isbn>1484282361</isbn><fulltext>true</fulltext><rsrctype>book</rsrctype><creationdate>2022</creationdate><recordtype>book</recordtype><sourceid>OODEK</sourceid><recordid>eNplkDtPwzAURo0QCCjdWJAYOiAhhtDrR2xnbKPykCqxoK6WnTilxKpL7BZ-PkmbBZhsfzrf8bURusbwgAHEOBMywQmTjCSSUJ7wIzRsM9wlXcCP_5xP0QWmVLCs3cMZGobwAQBEUMgknKOr3PltOZrEqIt6tLBF9E24RCeVdsEO-3WAFo-zt_w5mb8-veSTeaIJpoQmWqTEYDBS81ITLkxWgUytMQUrOTUSiKzKUkrQFTO25JzqAlKjdWGYKVrHAN0dxKFeORd8FZXxvg6EfQtl6tBOijmlnLXk_YHUobZf4d27GNTO2T2ufr24Zce9ddOs1kvbHKQKg-r-sKMVVh2vuoLqGrd9Q1e6WfX8jvwT9-NuGv-5tSGq_f2FXcdGOzWb5gKY5KloyZuetI2zS98bWYoZpJz-APC8fsQ</recordid><startdate>2022</startdate><enddate>2022</enddate><creator>Haber, Morey J</creator><creator>Chappell, Brian</creator><creator>Hills, Christopher</creator><general>Apress</general><general>Apress L. P</general><scope>YSPEL</scope><scope>OHILO</scope><scope>OODEK</scope></search><sort><creationdate>2022</creationdate><title>Cloud Attack Vectors</title><author>Haber, Morey J ; Chappell, Brian ; Hills, Christopher</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-a21323-a752b10b8a6da267b9f085ebbc4d63b8028fdd880af4bed663ac05baacb4bc213</frbrgroupid><rsrctype>books</rsrctype><prefilter>books</prefilter><language>eng</language><creationdate>2022</creationdate><topic>Cloud computing</topic><topic>Computer communication systems</topic><topic>Computer Science</topic><topic>Computer security</topic><topic>Computer system failures</topic><topic>COMPUTERS</topic><topic>Cyberterrorism</topic><topic>Professional and Applied Computing</topic><topic>Professional Computing</topic><topic>Systems and Data Security</topic><toplevel>online_resources</toplevel><creatorcontrib>Haber, Morey J</creatorcontrib><creatorcontrib>Chappell, Brian</creatorcontrib><creatorcontrib>Hills, Christopher</creatorcontrib><collection>Perlego</collection><collection>O'Reilly Online Learning: Corporate Edition</collection><collection>O'Reilly Online Learning: Academic/Public Library Edition</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Haber, Morey J</au><au>Chappell, Brian</au><au>Hills, Christopher</au><format>book</format><genre>book</genre><ristype>BOOK</ristype><btitle>Cloud Attack Vectors: Building Effective Cyber-Defense Strategies to Protect Cloud Resources</btitle><date>2022</date><risdate>2022</risdate><isbn>9781484282366</isbn><isbn>1484282361</isbn><isbn>9781484282359</isbn><isbn>1484282353</isbn><eisbn>9781484282366</eisbn><eisbn>1484282361</eisbn><abstract>Cyberattacks continue to increase in volume and sophistication, targeting everything owned, managed, and serviced from the cloud. Today, there is widespread consensus—it is not a matter of if, but rather when an organization will be breached. Threat actors typically target the path of least resistance. With the accelerating adoption of cloud technologies and remote work, the path of least resistance is shifting in substantive ways. In recent years, attackers have realigned their efforts, focusing on remaining undetected, monetization after exploitation, and publicly shaming organizations after a breach. New, innovative, and useful products continue to emerge and offer some cloud protection, but they also have distinct limitations. No single, standalone solution or strategy can effectively protect against all cloud attack vectors or identify all malicious activity. The simple fact is that the cloud is based on a company's assets being offered as services.As a result, the best security any organization can achieve is to establish controls and procedures in conjunction with services that are licensed in the cloud. Cloud Attack Vector s details the risks associated with cloud deployments, the techniques threat actors leverage, the empirically-tested defensive measures organizations should adopt, and shows how to improve detection of malicious activity. What You'll Learn * Know the key definitions pertaining to cloud technologies, threats, and cybersecurity solutions * Understand how entitlements, permissions, rights, identities, accounts, credentials, and exploits can be leveraged to breach a cloud environment * Implement defensive and monitoring strategies to mitigate cloud threats, including those unique to cloud and hybrid cloud environments * Develop a comprehensive model for documenting risk, compliance, and reporting based on your cloud implementation Who This Book Is For New security professionals, entry-level cloud security engineers, managers embarking on digital transformation, and auditors looking to understand security and compliance risks associated with the cloud</abstract><cop>Berkeley, CA</cop><pub>Apress</pub><doi>10.1007/978-1-4842-8236-6</doi><oclcid>1337493660</oclcid><tpages>492</tpages><edition>1</edition></addata></record> |
| fulltext | fulltext |
| identifier | ISBN: 9781484282366 |
| ispartof | |
| issn | |
| language | eng |
| recordid | cdi_skillsoft_books24x7_bks000163364 |
| source | O'Reilly Online Learning: Academic/Public Library Edition |
| subjects | Cloud computing Computer communication systems Computer Science Computer security Computer system failures COMPUTERS Cyberterrorism Professional and Applied Computing Professional Computing Systems and Data Security |
| title | Cloud Attack Vectors: Building Effective Cyber-Defense Strategies to Protect Cloud Resources |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-01T16%3A16%3A02IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_skill&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=book&rft.btitle=Cloud%20Attack%20Vectors:%20Building%20Effective%20Cyber-Defense%20Strategies%20to%20Protect%20Cloud%20Resources&rft.au=Haber,%20Morey%20J&rft.date=2022&rft.isbn=9781484282366&rft.isbn_list=1484282361&rft.isbn_list=9781484282359&rft.isbn_list=1484282353&rft_id=info:doi/10.1007/978-1-4842-8236-6&rft_dat=%3Cproquest_skill%3EEBC7048657%3C/proquest_skill%3E%3Curl%3E%3C/url%3E&rft.eisbn=9781484282366&rft.eisbn_list=1484282361&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=EBC7048657&rft_id=info:pmid/&rfr_iscdi=true |