28 Percent of Organizations Don't Encrypt Data in Public Cloud Environments


According to the results of a HyTrust survey of 400 attendees at the recent VMworld 2016 conference, more than a quarter (28 percent) of organizations that use a public cloud are doing nothing to encrypt the data they store there.

Thirty-two percent of respondents are encrypting data using the cloud provider's solution, while 21 percent are deploying a separate data encryption solution.

Forty-seven percent of respondents said security was their main reason for avoiding cloud deployments, and 54 percent said their old approaches to security would not work for future cloud deployments.

The survey also found that approximately 60 percent of organizations plan to move to a multi-cloud model, and approximately 37 percent are deploying data, applications and workloads into three or more public clouds.

"The way we work is changing and in today's fast-paced digital business environment, organizations need solutions that offer them the scale and security they need to operate efficiently while providing excellent service to their customers," HyTrust president and founder Eric Chiu said in a statement.

Separately, a recent Bitglass survey of 176 information security professionals, conducted in partnership with the Cloud Security Alliance, found that the majority of respondents have experienced a cloud security incident, with 59 percent related to unwanted external sharing and 47 percent involving access from unauthorized devices.

The survey also found that cloud visibility is lacking -- 28 percent of respondents can't track user logins, 29 percent don't have audit logs, and only 49 percent know where and when sensitive data is being downloaded from the cloud.

The Netskope Cloud Report for September 2016 found that enterprises on average have 977 cloud apps in use, up from 935 last quarter.

The survey also found that there are, on average, 26 pieces of malware found in cloud apps across a given organizations. Fully 56 percent of malware-infected files in cloud apps, Netskope found, are shared with internal or external users, or shared publicly.

"IT teams need deeper intelligence, protection, and remediation that can help them stop malware and ransomware in their tracks and prevent them from spreading," Netskope founder and CEO Sanjay Beri said in a statement.

A recent eSecurity Planet article looked at 6 questions to ask yourself about your cloud security.