{"id":35067,"date":"2020-05-19T20:09:00","date_gmt":"2020-05-19T20:09:00","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/"},"modified":"2020-05-19T20:09:00","modified_gmt":"2020-05-19T20:09:00","slug":"6-ways-to-be-more-secure-in-the-cloud","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/","title":{"rendered":"6 ways to be more secure in the cloud"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/images.techhive.com\/images\/article\/2015\/10\/cloud-security-ts-100622309-large.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<div class=\"teaser\">\n<p>For years, many business and IT executives have been leery of the public cloud \u2014 and even avoided these services outright \u2014 because of concerns about security threats.<\/p>\n<p>Those worries have largely abated as the cloud services market matured and the leading cloud providers built highly secure infrastructures. But that doesn\u2019t mean the threats have gone away or that cloud customers should assume they\u2019re no longer responsible for making sure their data is protected.<\/p>\n<aside class=\"pullquote\"><q>Cloud misconfiguration is the first thing attackers check for &#8230; a small oversight such as failing to remove an old account can cause problems in seconds.<\/q><\/aside>\n<p>\u201cThe upswing in global cloud adoption has given rise to new cloud security threats, where hackers can study a company&#8217;s weakness and gain unauthorized access to steal confidential information,\u201d notes the Cloud Security Alliance (CSA), an organization that defines standards, certifications and best practices to help ensure a secure cloud computing environment.<\/p>\n<aside class=\"fakesidebar\">\n<h4><strong>[ Related:<\/strong> <a href=\"https:\/\/www.idginsiderpro.com\/article\/3437042\/cloud-security-inside-the-shared-responsibility-model.html\">Cloud security: Inside the shared responsibility model<\/a> ]<\/h4>\n<\/aside>\n<p>\u201cWe need smarter and more agile controls to deal with such threats, and this is where the traditional security measures of cloud service providers [CSPs] fail,\u201d CSA said.<\/p>\n<p>The organization has identified the top threats to cloud computing, based on surveys and questionnaires of its members by the CSA Top Threats Working Group. These include data breaches; lack of cloud security architecture and strategy; insufficient identity, credential, access and key management; account hijacking; insider threats; insecure interfaces and application programming interfaces (APIs); and limited visibility of cloud usage.<\/p>\n<p>Organizations that now rely on multiple or hybrid cloud environments to support their business processes need to be vigilant in ensuring that their data and applications are safe \u2014 just as they were when these resources resided on premises.<\/p>\n<p>Research firm Gartner has made a number of predictions about cloud security that should cause concern among CISOs and other security executives.<\/p>\n<aside class=\"fakesidebar\">\n<h4>[ Skills and training: <a href=\"https:\/\/www.idginsiderpro.com\/article\/3444564\/29-top-cloud-certifications.html\">29 top cloud certifications<\/a> ]<\/h4>\n<\/aside>\n<p>One is that through 2025, 90 percent of the organizations that fail to control<\/p>\n<p><em>Log in or subscribe to Insider Pro to read the full 2,083-word article.<\/em><\/p>\n<\/p><\/div>\n<div class=\"premium\">\n<p>For years, many business and IT executives have been leery of the public cloud \u2014 and even avoided these services outright \u2014 because of concerns about security threats.<\/p>\n<p>Those worries have largely abated as the cloud services market matured and the leading cloud providers built highly secure infrastructures. But that doesn\u2019t mean the threats have gone away or that cloud customers should assume they\u2019re no longer responsible for making sure their data is protected.<\/p>\n<aside class=\"pullquote\"><q>Cloud misconfiguration is the first thing attackers check for &#8230; a small oversight such as failing to remove an old account can cause problems in seconds.<\/q><\/aside>\n<p>\u201cThe upswing in global cloud adoption has given rise to new cloud security threats, where hackers can study a company&#8217;s weakness and gain unauthorized access to steal confidential information,\u201d notes the Cloud Security Alliance (CSA), an organization that defines standards, certifications and best practices to help ensure a secure cloud computing environment.<\/p>\n<aside class=\"fakesidebar\">\n<h4><strong>[ Related:<\/strong> <a href=\"https:\/\/www.idginsiderpro.com\/article\/3437042\/cloud-security-inside-the-shared-responsibility-model.html\">Cloud security: Inside the shared responsibility model<\/a> ]<\/h4>\n<\/aside>\n<p>\u201cWe need smarter and more agile controls to deal with such threats, and this is where the traditional security measures of cloud service providers [CSPs] fail,\u201d CSA said.<\/p>\n<p>The organization has identified the top threats to cloud computing, based on surveys and questionnaires of its members by the CSA Top Threats Working Group. These include data breaches; lack of cloud security architecture and strategy; insufficient identity, credential, access and key management; account hijacking; insider threats; insecure interfaces and application programming interfaces (APIs); and limited visibility of cloud usage.<\/p>\n<p>Organizations that now rely on multiple or hybrid cloud environments to support their business processes need to be vigilant in ensuring that their data and applications are safe \u2014 just as they were when these resources resided on premises.<\/p>\n<p>Research firm Gartner has made a number of predictions about cloud security that should cause concern among CISOs and other security executives.<\/p>\n<aside class=\"fakesidebar\">\n<h4>[ Skills and training: <a href=\"https:\/\/www.idginsiderpro.com\/article\/3444564\/29-top-cloud-certifications.html\">29 top cloud certifications<\/a> ]<\/h4>\n<\/aside>\n<p>One is that through 2025, 90 percent of the organizations that fail to control public cloud use will inappropriately share sensitive data. Another is that through 2024, a majority of organizations will continue to struggle with appropriately measuring cloud security risks. And a third is that through 2025, 99 percent of cloud security failures will be the customer\u2019s fault, not the fault of the cloud provider.<\/p>\n<p>Here are some suggested best practices for strong security in the cloud environment.<\/p>\n<h2 class=\"toc\" id=\"toc-1\">1. Deploy identity and access management tools<\/h2>\n<p>Managing who has access to what data and services in the cloud should be the foundation of a cloud cybersecurity program, said Steve Riley, senior director and analyst, cloud security at Gartner.<\/p>\n<p>In the public cloud, \u201clogical access controls at the individual resource and data object level become paramount,\u201d Riley said. \u201cIdentity is perhaps the most important form of virtual perimeter that can effectively reduce the attack surface area of potential breaches.\u201d<\/p>\n<p>Cloud administrative consoles and cloud-residing applications are likely accessible to anyone with an internet connection, Riley said. As a result, the foundation of any strategy for maintaining control of an organization\u2019s portion of the cloud is an effective identity and access management (IAM) strategy.<\/p>\n<p>\u201cAs an organization designs an IAM strategy that both enables and protects the business, remember that the principle of least privilege remains a useful anchor,\u201d Riley said. \u201cFavor stinginess, but implement a process for quick and easy requesting and granting of additional privileges with minimal disruption to an individual\u2019s workflow.\u201d<\/p>\n<p>When privilege assignments are too narrow, the system \u201cfails safely\u201d and errors tend not to create security problems, Riley said. \u201cWhen assignments are too broad \u2014 often because of entitlement creep \u2014 the converse is true: errors tend to create real security problems,\u201d he said.<\/p>\n<aside class=\"fakesidebar\">\n<h4><strong>[ Related:<\/strong> <a href=\"https:\/\/www.idginsiderpro.com\/article\/3431152\/where-in-the-cloud-is-it-headed.html\">Where in the cloud is IT headed? |&nbsp;<\/a><a href=\"http:\/\/idginsiderpro.com\/subscribe\/\" rel=\"nofollow\"><strong>Learn more<\/strong><\/a> about IDG\u2019s new Insider Pro premium, ad-free subscription site ]<\/h4>\n<\/aside>\n<p>Most public cloud services now offer role-based administration, built-in <a href=\"https:\/\/www.idginsiderpro.com\/article\/3529877\/why-two-factor-authentication-doesnt-make-you-as-secure-as-you-think.html\">multi-factor authentication (MFA)<\/a>, and extensive logging capabilities, Riley said. \u201cSome can be integrated with privileged access management tools. Most services also offer some form of \u2018effective permissions\u2019 evaluator, which helps remove the guesswork from determining whether the permissions of a user or service account are overly scoped.\u201d<\/p>\n<p>Too-broad permissions on accounts and too-broad access control lists on objects represent the most common and most dangerous cloud security problems, Riley said.<\/p>\n<h2 class=\"toc\" id=\"toc-2\">\u200b2. Prevent security misconfigurations<\/h2>\n<p>The greatest threat to cloud environments is misconfigurations, said Frank Dickson, program vice president, security and trust at research firm IDC.<\/p>\n<p>For example, open Amazon Web Services&#8217; (AWS) Simple Storage Service (S3) buckets has been a source of high-profile breaches, and yet some organizations choose to leave the public cloud storage resources open, Dickson said.<\/p>\n<p>\u201cS3 buckets though are not open by default; they are closed,\u201d Dickson said.&nbsp;\u201cThe client had to make a decision to open the buckets and leave them exposed.&nbsp;The old adage said that an ounce of prevention is worth a pound of cure. Well, an ounce of investment in proper cloud configurations is worth 20 pounds of cloud security tools.\u201d<\/p>\n<p>Cloud misconfiguration is the first thing attackers check for, according to CSA, and a small security oversight such as failing to remove an old account can cause problems in a matter of seconds. Among the common ways a cloud can be misconfigured are a lack of access restrictions; and a lack of data protection, particularly for personal information that is uploaded in plain-text form in the cloud.<\/p>\n<aside class=\"fakesidebar\">\n<h4><strong>[ Security school:<\/strong> <a href=\"https:\/\/www.idginsiderpro.com\/article\/3531390\/security-school-enroll-today-and-advance-your-tech-career.html\">Insider Pro subscribers enroll for free<\/a> ]<\/h4>\n<\/aside>\n<p>Another reason for misconfigurations, CSA said, is failing to audit and validate cloud resources. A lack of regular audits of resources and configurations can lead to a security flaw ready to be pounced on by malicious exploiters, the group reports.<\/p>\n<p>Companies can also neglect logging and monitoring. The timely checking of data and access logs is vital to identify and flag security-related events.<\/p>\n<p>Finally, organizations can provide \u201cover entitlement\u201d of access to users. User access should be restricted to only the applications and data that an individual is permitted to use, CSA said.<\/p>\n<h2 class=\"toc\" id=\"toc-3\">3. Reduce the complexity of cloud management<\/h2>\n<p>Providing sufficient security for even a single cloud service can be a big challenge for organizations. Add more cloud services and more cloud providers to the mix and the challenge of protecting data becomes even greater.<\/p>\n<h4>[ Related: <a href=\"https:\/\/www.idginsiderpro.com\/article\/3514669\/why-multicloud-security-is-your-next-big-challenge.html\">Why multicloud security is your next big challenge<\/a>&nbsp;]<\/h4>\n<p>And for a growing number of organizations, a migration to the cloud ultimately means having a multi-cloud or hybrid cloud environment. This can result in a highly complex infrastructure, encompassing a variety of public cloud service providers and types of cloud services, and it can introduce a number of security risks.<\/p>\n<p>One of the early steps in addressing cybersecurity in a cloud-dominated environment should be to reduce complexity, Dickson said.&nbsp;IDC estimates that 80 percent of companies have more than one Infrastructure-as-a-Service (IaaS) provider, he said.<\/p>\n<p>Many organizations are using multiple software-as-a-service (SaaS) and platform-as-a-service (PaaS) offerings from different providers as well, as they look to reduce operating expenditures and gain greater agility in providing services to users and customers.<\/p>\n<p>Having multiple clouds, each with its own peculiarities, can be hard to protect.&nbsp;\u201cMinimize the number of cloud providers if possible,\u201d Dickson said.&nbsp;\u201cFewer cloud providers often means fewer security providers. Vendor consolidation further reduces complexity.\u201d<\/p>\n<h2 class=\"toc\" id=\"toc-4\">4. Focus increased attention on detection and response<\/h2>\n<p>As a consequence of ceding some control with the cloud, organizations should expect to perform more monitoring of cloud activity, Riley said, in order to demonstrate that governance procedures are in place and are being followed.<\/p>\n<p>\u201cMost CSPs provide the necessary tools to instrument resources, workloads and applications to gather raw log data, but might place limits on where log data can be stored,\u201d Riley said. \u201cConverting this data into useful information presents challenges and might require a CSP-provided or third-party product or service, especially if log data needs to be moved from one geographic region to another.\u201d<\/p>\n<h4>[ Related: <a href=\"https:\/\/www.idginsiderpro.com\/article\/3481644\/cloud-migration-strategy-how-to-build-a-team-of-experts.html\">Cloud migration strategy: How to build a team of experts&nbsp;<\/a>]<\/h4>\n<p>Some Gartner clients prefer to rely on existing security information and event management (SIEM) tools, and many cloud services support the more popular ones, Riley said. Other clients report that SIEM tools are unwieldy and noisy, and instead prefer more cloud-native services.<\/p>\n<p>\u201cBefore investing in yet another product, however, organizations should first investigate the cloud service\u2019s built-in logging, reporting and analysis capabilities,\u201d Riley said.<\/p>\n<p>SaaS applications tend to offer collections of various reports that aggregate, correlate and analyze behavior. \u201cThese could be sufficient for organizations [that] use only one or a few SaaS applications,\u201d Riley said. For organizations that subscribe to many SaaS applications, a cloud access security broker (CASB) or SaaS management platform (SMP) would likely be a better choice for assessing SaaS security posture and standardizing control and governance.<\/p>\n<p>\u201cIaaS and PaaS providers offer the primitives necessary for instrumentation and expect their customers to gather the outputs into a service that can make sense of the data,\u201d Riley said. \u201cIncreasingly, IaaS and PaaS CSPs offer native incident analysis and investigation capabilities.\u201d<\/p>\n<p>In addition, cloud security posture management (CSPM) tools offer highly effective mechanisms for assessing the configurations of workloads and for detecting and remediating out-of-compliance settings.<\/p>\n<h2 class=\"toc\" id=\"toc-5\">5. Deploy data encryption<\/h2>\n<p>Data encryption is one of the stronger security tools organizations can use to protect data if it somehow falls into the wrong hands.<\/p>\n<h4>[ Related: <a href=\"https:\/\/www.idginsiderpro.com\/article\/3487558\/how-ibm-plans-to-compete-in-the-cloud.html\">How IBM plans to compete in the cloud<\/a>&nbsp;]<\/h4>\n<p>\u201cThe protection of data becomes important in the cloud as data, by default, leaves the premises,\u201d Dickson said. \u201cEncryption of data in motion and data at rest is a must.<\/p>\n<p>Encryption offers an extra layer of logical isolation, Riley said. \u201cFor many security teams, debate swirls around the question of whether to encrypt everything by default,\u201d he said. \u201cFor IaaS and for bulk storage in PaaS, a reasonable approach could be to do exactly that. It simplifies configuration procedures, avoids situations in which sensitive data is inadvertently exposed, and is useful for destroying data by just deleting the keys.\u201d<\/p>\n<p>Encryption also serves as a double-check for access control strategies, Riley said. \u201cTo read an encrypted object, an account must be present on two access control lists: that of the object itself and that of the key which encrypted the object,\u201d he said. \u201cMechanisms that must agree when granting access represent a useful form of defense in depth.\u201d<\/p>\n<p>For SaaS and application layer data in PaaS, the decision is more complicated, Riley said. \u201cEncrypting data outside the context of the PaaS\/SaaS application reduces application functionality,\u201d he said. \u201cOrganizations must weigh the trade-offs between functionality and isolation.\u201d<\/p>\n<p>Encryption is no substitute for trust, Riley said. \u201cDoing anything useful with encrypted data requires decrypting it first and reading it into memory \u2014 leaving it exposed to memory-based attacks,\u201d he said.<\/p>\n<h2 class=\"toc\" id=\"toc-6\">6. Make training and education a priority<\/h2>\n<p>Finally, as with any other cybersecurity initiative, educating users about security risks is vital. Migrating to the cloud is still a relatively new concept for many organizations and employees, so training and written guides for procedures needs to be a priority.<\/p>\n<p>\u201cStart educating yourself and your staff on cloud security,\u201d said John Yeoh, global vice president of research at CSA. \u201cThere are a number of educational documents and courses available to learn about security fundamentals in the cloud.\u201d<\/p>\n<p>The CSA has a foundational document called <a href=\"https:\/\/cloudsecurityalliance.org\/research\/guidance\/\" rel=\"noopener nofollow noreferrer\" target=\"_blank\">Security Guidance for Critical Areas of Focus in Cloud Computing<\/a>, and a training course called <a href=\"https:\/\/cloudsecurityalliance.org\/education\/ccsk\/\" rel=\"noopener nofollow noreferrer\" target=\"_blank\">Certificate of Cloud Security Knowledge<\/a>.<\/p>\n<p>\u201cFor those using specific cloud services and tools, it\u2019s important to have the knowledge of those tools,\u201d Yeoh said. \u201cProviders constantly add and change features in their services. Keeping up with the proper use of the features and understanding standard configurations is vital to the secure use of those services.\u201d<\/p>\n<p>Establishing a culture for security with basic cloud knowledge \u201cis a great step to improving a company\u2019s security posture by reducing the human error element and creating awareness of best practices in the cloud,\u201d Yeoh said.<\/p>\n<p>Education should also extend to knowing exactly what cloud providers offer in the way of security.<\/p>\n<p>CSA\u2019s&nbsp;<a href=\"https:\/\/cloudsecurityalliance.org\/research\/cloud-controls-matrix\/\" rel=\"noopener nofollow noreferrer\" target=\"_blank\">Cloud Controls Matrix<\/a> allows you to view and compare how cloud service providers meet or exceed baseline security requirements, Yeoh said.<\/p>\n<p>\u201cHaving a framework of common cloud security controls that are being implemented in the industry creates trust and assurance for that cloud service provider and their services,\u201d Yeoh said. \u201cIdentify security requirements that are critical to your organizational use of that service, and ensure that those requirements are met through controls provided in the framework. This practice can expedite the procurement process and improve your security posture.\u201d<\/p>\n<\/div>\n<p> READ MORE <a href=\"https:\/\/www.idginsiderpro.com\/article\/3529382\/6-ways-to-be-more-secure-in-the-cloud.html#tk.rss_security\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>If you rely on multiple or hybrid cloud environments to support business processes, you need to be as vigilant protecting data and applications as when they resided on premises. READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":35068,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[738],"tags":[1253,536,1320,307,3550],"class_list":["post-35067","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-networkworld","tag-cloud-computing","tag-cloud-security","tag-cyber-attacks","tag-security","tag-technology-industry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>6 ways to be more secure in the cloud 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"6 ways to be more secure in the cloud 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2020-05-19T20:09:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/6-ways-to-be-more-secure-in-the-cloud.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"620\" \/>\n\t<meta property=\"og:image:height\" content=\"412\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"12 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"6 ways to be more secure in the cloud\",\"datePublished\":\"2020-05-19T20:09:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/\"},\"wordCount\":2438,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/05\\\/6-ways-to-be-more-secure-in-the-cloud.jpg\",\"keywords\":[\"cloud computing\",\"Cloud Security\",\"cyber attacks\",\"Security\",\"Technology Industry\"],\"articleSection\":[\"Networkworld\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/\",\"name\":\"6 ways to be more secure in the cloud 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/05\\\/6-ways-to-be-more-secure-in-the-cloud.jpg\",\"datePublished\":\"2020-05-19T20:09:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/05\\\/6-ways-to-be-more-secure-in-the-cloud.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/05\\\/6-ways-to-be-more-secure-in-the-cloud.jpg\",\"width\":620,\"height\":412},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/6-ways-to-be-more-secure-in-the-cloud\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"cloud computing\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/cloud-computing\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"6 ways to be more secure in the cloud\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"6 ways to be more secure in the cloud 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/","og_locale":"en_US","og_type":"article","og_title":"6 ways to be more secure in the cloud 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2020-05-19T20:09:00+00:00","og_image":[{"width":620,"height":412,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/6-ways-to-be-more-secure-in-the-cloud.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"12 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"6 ways to be more secure in the cloud","datePublished":"2020-05-19T20:09:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/"},"wordCount":2438,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/6-ways-to-be-more-secure-in-the-cloud.jpg","keywords":["cloud computing","Cloud Security","cyber attacks","Security","Technology Industry"],"articleSection":["Networkworld"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/","url":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/","name":"6 ways to be more secure in the cloud 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/6-ways-to-be-more-secure-in-the-cloud.jpg","datePublished":"2020-05-19T20:09:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/6-ways-to-be-more-secure-in-the-cloud.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/05\/6-ways-to-be-more-secure-in-the-cloud.jpg","width":620,"height":412},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/6-ways-to-be-more-secure-in-the-cloud\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"cloud computing","item":"https:\/\/www.threatshub.org\/blog\/tag\/cloud-computing\/"},{"@type":"ListItem","position":3,"name":"6 ways to be more secure in the cloud"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/35067","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=35067"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/35067\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/35068"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=35067"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=35067"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=35067"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}