Enterprises at risk from malware delivered by cloud apps

No Comments
Cloud risk

New research shows that the majority of all malware is now delivered via cloud applications, showing how attackers increasingly abuse popular cloud services to evade legacy security defenses, putting enterprise data at risk.

The report from Netskope reveals that 61 percent of all malware was delivered via a cloud app, up from 48 percent year-over-year.

In 2020, the number of cloud apps in use per organization increased 20 percent. Organizations with between 500 and 2,000 employees now use on average 664 distinct cloud apps per month. Of those apps, nearly half have a 'poor' Cloud Confidence Index (CCI), a measure pioneered by Netskope to determine a cloud service’s enterprise readiness.

Cloud apps are now the target of around one in three (36 percent) phishing campaigns. While the majority of phishing lures are still hosted on traditional websites, attackers are increasingly using cloud apps to gain footholds in organizations.

Malicious Office documents are being used as trojans to deliver next stage payloads, including ransomware and backdoors. Using cloud app delivery to evade legacy email and web defenses, malicious Office documents represent 27 percent of all malware downloads detected and blocked by the Netskope Security Cloud.

As work and home lives have become blurred, 83 percent of users are accessing personal app instances on corporate devices. The average enterprise user uploads 20 files to personal apps each month from these managed devices, increasing the likelihood of data being mishandled or leaked.

"Cybercriminals increasingly abuse the most trusted and popular cloud apps, especially for cloud phishing and cloud malware delivery," says Ray Canzanese, threat research director at Netskope. "Enterprises using the cloud need to quickly modernize and extend their security architectures to understand data content and context for apps, cloud services, and web user activity."

The full report is available from the Netskope site.

Image Credit: Creativa Images / Shutterstock

No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

Addressing digital transformation needs in the public sector [Q&A]

The psychological impact of phishing attacks on your employees

Canonical releases Ubuntu Linux 24.04 LTS 'Noble Numbat'

New tool lets enterprises build their own secure gen AI chatbots

Younger women are going into cybersecurity but more needs to be done

Politically motivated DDoS attacks on the rise

TCL 50 XL 5G Android smartphone hits Metro by T-Mobile: Big features, small price

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

62 Comments

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

22 Comments

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

21 Comments

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

18 Comments

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

18 Comments

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

18 Comments

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

17 Comments

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE

10 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.