Hotmail Breach shows off the dangers of the Cloud...
@ 2009/10/06Just a couple of days ago I talked about the unfortunate tendency for corporations to look for the cheapest solution, not the best. While covering that I touched on the new found trust in Cloud Computing. This is a trend where big companies, looking to save money, are turning to hosted solutions for e-mail, documents, even operating systems instead of controlling them all on their own.
The problem is that these systems are not very secure. Web Based E-mail and document systems are all too easy to breech. Just look at the recent leak of "several thousand" Hotmail accounts to a third party site "most likely due to a phishing scam". That is a lot of user accounts to be exposed by a Phishing scam if you ask me and serves as an example of how insecure these systems can be. Now I know we are seeing a free web based solution here, but it is pretty much a cloud type of service. Yes, not all cloud systems are this insecure, and not all will be vulnerable to this type of attack but is still a cause for concern here.
The problem is that these systems are not very secure. Web Based E-mail and document systems are all too easy to breech. Just look at the recent leak of "several thousand" Hotmail accounts to a third party site "most likely due to a phishing scam". That is a lot of user accounts to be exposed by a Phishing scam if you ask me and serves as an example of how insecure these systems can be. Now I know we are seeing a free web based solution here, but it is pretty much a cloud type of service. Yes, not all cloud systems are this insecure, and not all will be vulnerable to this type of attack but is still a cause for concern here.
More on topic, a follow up:
The problem is far more widespread than was disclosed on Monday, possibly affecting Yahoo and AOL e-mail accounts as well, according to BBC News.