Many organizations still fail to consider the unique risks posed by cloud computing…

An article review.

Last month thousands of Western Digital MyCloud device owners learned about the risks of cloud-based solutions the hard way: their data had been wiped remotely due to a flaw in the internet-facing component of their external hard drives.

While the MyCloud devices were aimed at home users, the incident should highlight the risks we all face when considering whether to move something “into the cloud.”  Whether that something is data storage or simply an application used in your organization, there are additional risks on top of the ones you identified during your prior evaluations.

Making things more problematic, those new risks may not be apparent at first glance.  Take those MyCloud owners as an example:  many never considered the device could pose additional risk, as it was being used for local–not cloud–storage.  Additionally, the online functionality of the drives may not have even been used, making it easy to forget.

If you’re still trying to get your head around the implications of cloud computing, you’re not alone.  The FFIEC recently released an updated Architecture, Infrastructure and Operations IT Examination Handbook, which includes (for the first time) in-depth guidance on cloud applications throughout.

The new FFIEC Guidance will be touched on during our upcoming LIVE workshop at the Indiana Bankers Association. Click on the button below to register!

[su_button url=”https://indiana.bank/event/4254″ target=”blank” style=”glass” background=”#0000ff” color=”#ffffff” size=”5″ wide=”yes” center=”yes” radius=”0″ icon_color=”#ffffff”]Register Here![/su_button]

Original article by Brian Krebs for Krebs on Security.