For quite some time now, cloud-based file storage services have been quite popular among Internet users. However, the convenience that these services undoubtedly offer seems to be offset to some extent by the risks they present. For example, many users follow various advice and store scanned copies of their passport and other personal documents in the cloud, although sometimes the vulnerabilities of a service compromise the security of their personal data. At the same time, using cloud technologies for purposes different from those for which they were originally designed can cause even greater damage. For example, it is easy to find instructions for computer owners who want to use these services to remotely control and monitor their devices, to control the files they download via torrents, etc. By following these recommendations, users unknowingly create various security loopholes that can be easily exploited by digital criminals, especially in cases of targeted attacks.
Kaspersky Lab experts warn businesses that corporate networks are at risk of being "infected" through cloud services. For example, digital criminals can gain control of an employee's laptop through a Dropbox client installed on it. This could happen when the employee is out of the office. If "infected" documents are placed in folders in the cloud, Dropbox will automatically copy them to all devices connected to the corporate network and "running" the same service. Dropbox is not the only service on which this could happen, as all popular cloud storage applications, including Onedrive (or Skydrive), Google Drive, Yandex Disk, etc., have automatic sync functions.
Kaspersky Lab experts, after analysing data collected with the consent of users[1], found that approximately 30% of the malware detected on home computer cloud folders had been injected through synchronisation mechanisms. For corporate users, this figure reaches 50%. It is worth noting that while the cloud folders of corporate users typically contain 'infected' Microsoft Office files, the corresponding folders on PCs often contain malicious Android applications.
"A careful analysis of the statistics has shown that the risk of "contamination" of corporate networks through cloud storage is currently relatively low. In the last year, just 1 in 1000 corporate users faced the risk of their computer being 'infected'. However, it should be borne in mind that - in some cases - even one 'infected' computer is enough to cause massive problems across the entire network and cause significant damage. Configuring the firewall to prevent access to these services is a laborious process, which requires constant updating of its settings," commented Kirill Kruglov, Senior Research Developer at Kaspersky Lab.
For these cases, administrators of corporate systems must install a fully functional security suite, which will have heuristic and behavioural antivirus protection, as well as access control (HIPS), operating system control (System Watcher or Hypervisor), vulnerability exploitation protection, etc., on each workstation on the network. Kaspersky Lab suggests using the innovative ApplicationControl technology, included in the corporate security solution it offers, which can block any software if its execution is not explicitly allowed by the system administrator. ApplicationControl technologyprotects the corporate network from targeted attacks via Dropbox, without preventing users from working.
About KasperskyLab
Η KasperskyLab is the world's largest unlisted provider of computer security solutions. The company is among the top four security solution providers in the world*. Throughout its more than 16-year history, the KasperskyLab innovates in the field of security, providing efficient solutions to protect users, SMEs and large enterprises. Today, the activities of KasperskyLab in 200 countries and regions around the world, with the company providing online security to over 300 million users. For more information, visit: www.kaspersky.com.
[1]The KasperskySecurityNetwork (KSN) is a complex infrastructure designed to process depersonalised digital security-related data from millions of volunteers around the world. The KSNoffers the information available to the KasperskyLabfor security issues to every partner or customer connected to the Internet, ensuring immediate response to threats and extremely high levels of protection.
KasperskyContact
KonstantinosMemmos
Advocate/ Burson-Marsteller
210 6931000
kmemmos@advocate-bm.gr
