Conf42: Cloud Native 2022

...

Inside your cloud databases – the truth about your data security posture

Mor Manor
Head of Innovation & Operations @ Imperva

Mor Manor's LinkedIn account


In their cloud security report last year Gartner states: “Through 2025, more than 99% of cloud breaches will have a root cause of preventable misconfigurations or mistakes by end users.” This statement is one of many affirmations that emphasizes the importance of data resides in the cloud.

Yet, while we migrate to cloud environments, we scrutinize the infrastructure; we secure the virtual permitter, workloads, and other assets. We do, however, tend to forget about the security posture of our crown jowl, our data.

In this session we present, “ Snapshot”, a patent-pending technology that provides cloud data security posture. This free agentless solution leverages cloud databases snapshot functionality and allows cloud operators to receive thorough insights of their data stored in the cloud.

To demonstrate the magnitude of the data exposure issue we will present recent research we conducted by automating the “Snapshot” technology. The research leverages a minor users’ misconfiguration on one of the leading public cloud vendors and exposes significant number of data & sensitive records over dozens of cloud accounts.

We will present how we automate the process, what insights we accomplished from the research and reflect on our responsive disclosure process to the vendor.

Awesome conferences for

Priority access to all content

Community Discord

Exclusive promotions and giveaways