Cloud as a malware infiltration channel

Q1 Social Sciences

Computer Fraud and Security Pub Date : 2023-04-01 DOI:10.12968/s1361-3723(23)70016-x

Raymond Canzanese

引用次数: 0

Abstract

It sometimes seems like everything is moving to the cloud, from the apps we use on our phones to major enterprise infrastructure. The result is that your IT landscape is always, to some extent, hybrid, with connections out to, and in from, the cloud at multiple points. The question you need to ask is whether this is opening up holes in your defences by exploiting channels and protocols that you inherently trust. This article examines the increasing popularity of cloud apps as a malware infiltration channel based on real-world data, and highlights potential mitigation strategies.

查看原文本刊更多论文

云作为恶意软件渗透的渠道

有时候，从我们在手机上使用的应用程序到主要的企业基础设施，似乎一切都在向云转移。其结果是，在某种程度上，您的IT环境始终是混合的，在多个点上有与云的连接和与云的连接。您需要问的问题是，这是否通过利用您天生信任的通道和协议在您的防御中打开了漏洞。本文研究了云应用程序作为基于真实世界数据的恶意软件渗透渠道的日益流行，并重点介绍了潜在的缓解策略。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computer Fraud and Security Social Sciences-Law

自引率

0.00%

发文量

期刊介绍： Computer Fraud & Security has grown with the fast-moving information technology industry and has earned a reputation for editorial excellence with IT security practitioners around the world. Every month Computer Fraud & Security enables you to see the threats to your IT systems before they become a problem. It focuses on providing practical, usable information to effectively manage and control computer and information security within commercial organizations.