DevSecOps report: Cloud IT complexity creates 'immutable' security issues


Organizations open up to cloud IT. 

Photo: Tom Foremski

A report on DevOps security has found that only 4% of issues found in production are dealt with because of the increased complexity of cloud based IT systems is creating new security gaps.

The State of DevSecOps report was commissioned by Accurics — which specializes in addressing  IT security through infrastructure as code in order to better handle the increased complexity of IT in the cloud. 

The report found that the cloud-based IT stack has become very complex with the addition of technologies such as containers. Each additional layer of the IT stack adds new risks.

The authors state: “The crux of the issues lies in the fact that as the cloud native stacks become more complex, point cloud security solutions become inadequate and gaps in coverage start to emerge.”

Containers are being used by 84% of the organizations surveyed and 41% are using serverless. The Kinsing malware attack is provided as an example where a simple misconfiguration of an API port allowed hackers to breach container clusters.

“Cloud infrastructure goes far beyond traditional network, storage, and compute; organizations are rapidly adopting new technologies such as serverless, containers, and service mesh,” says Piyush Sharrma CTO at Accurics. “Cloud infrastructure is becoming increasingly immutable: it is never modified after it is deployed. If something needs to be changed, new infrastructure has to be provisioned through code.”

But organizations are making errors when provisioning and managing infrastructure through code. About two-thirds of  reported security issues were exposed cloud storage services due to “egregious mistakes” that are easily avoidable by applying best practices. 

In 90% of cloud deployments the security baseline has shifted due to privileged users making changes without updating the code that was defined “to be the single source of truth.”

The report is here: The State of DevSecOps

About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Millions in Cryptocurrency Stolen by Scammers in the Last Month According to Tenable Research
November 24, 2021
Behind The Scenes: How this Crypto Community Responded to + $50m Hack
October 18, 2021
Crypto Scams
Crypto Scams Still Persistent In 2021, SEC Warns About Red Flags To Watch
September 9, 2021
Poly Network
Here’s How Hackers Stole Over $600 million in the Poly Network Attack
August 12, 2021
The World’s Most Infamous Crypto Hacks and Scams
July 31, 2021

Blockchain/Cryptocurrency Questions and Answers

Crypto casinos
How Does Bitcoin Casino Work + 2021 Beginner’s Guide
November 8, 2021
How to Buy and Sell Cryptocurrency
November 8, 2021
What Are Bitcoin Futures And How Will They Work In 2022?
November 4, 2021
The Unconventional Guide to Ethereum
October 28, 2021
ICo Presale
The Science Behind ICO Presales…
October 14, 2021

CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin51,321 0.13 % 8.63 % 11.28 %
Ethereum4,403.6 0.14 % 11.72 % 0.92 %
Binance Coin589.82 0.47 % 7.79 % 5.45 %
Tether0.9986 0.03 % 0.08 % 0.23 %
Solana202.64 0.28 % 13.99 % 0.84 %
Cardano1.460 0.68 % 14.45 % 8.85 %
USD Coin1.000 0.14 % 0.20 % 0.17 %
XRP0.8374 0.00 % 11.27 % 15.53 %
Polkadot30.87 2.19 % 17.29 % 10.73 %
Terra69.68 1.88 % 11.53 % 35.09 %

Bitcoin (BTC) $ 51,257.00
Ethereum (ETH) $ 4,411.26
Binance Coin (BNB) $ 588.45
Tether (USDT) $ 1.00
Solana (SOL) $ 203.09
Cardano (ADA) $ 1.46
USD Coin (USDC) $ 1.00
XRP (XRP) $ 0.836132
Polkadot (DOT) $ 29.00
Terra (LUNA) $ 68.38