Home / Tag Archives: point

Tag Archives: point

The uncovering of a fake Russian pundit

At this point in history, you probably wouldn't be surprised if I told you that the guy who owned Jared and Ivanka's Washington home was just uncovered as the ringleader behind what some believe is a Russian counterintelligence operation. But you'd s...

Read More »

Google brings DDoS protection and other new security features to its cloud

For the longest time, enterprises worried about how secure their data would be in the cloud, and for some, that was a major roadblock for moving out of their own data centers. At this point, most major cloud providers have shown that security isn’t an issue and that they are quite capable of securing their customers’ data. Security is an ever-changing field, though, so there’s always more to be done. As if to hammer this point home, Google today is announcing a slew of new security features for both the Google Cloud Platform and G Suite. Let’s start with the Cloud Platform updates. The highlight of the launch is the new VPC Service Controls  tool for protecting API-based services. I know that name doesn’t scream excitement, but it basically provides businesses an additional security layer for their API-based services on GCP. The idea here is to prevent attackers from exfiltrating data from cloud services. Here is how Google’s VP for security and privacy Gerhard Eschelbeck describes it: “ Imagine constructing an invisible border around everything in an app that prevents its data from escaping, and having the power to set up, reconfigure, and tear down these virtual perimeters at will.” To give its users deeper insights into their security posture, Google also is launching its Cloud Security Command Center today. This new tool will give enterprises deeper insights into their security posture across Google Cloud services like App Engine, Compute Engine and Cloud Storage. The service provides insights into where sensitive data is stored, but also which apps may be vulnerable to cross-site scripting attacks. In addition, the service scans firewall rules and regularly looks for changes in a company’s security settings and alerts operators of changes to make sure those weren’t unauthorized. One of the more interesting aspects of this service is that Google is also partnering with a number of security vendors like  Cloudflare, CrowdStrike, RedLock, Palo Alto Networks and Qualys to detect DDoS attacks, policy violations, network intrusions and other threats.  As far as DDoS attacks go, Google also today announced a new service called Cloud Armor (see, GCP can do naming right sometimes!). Cloud Armor is both a DDoS and application defense service that provides all the usual IP white- and blacklisting tools and integrates with Google’s Global Load Balancing service. Other Cloud Platform security updates include new logging tools , updates to the Data Loss Prevention API and new tools for managing access to GCP resources .

Read More »