This week:

3 – Backups are important even when you use the cloud.

2 – You need to check all of your doorways.

1 – Why the pain of DORA will be worth it.

 

3 – Even when your files are stored with one of the world’s leading cloud providers, you still need a separate backup

“My Google Drive files suddenly disappeared. The Drive literally went back to [its] condition in May 2023. Data from May until today [have] disappeared. [..] I followed [the] recovery process [provided by the] Google support team [but
it failed].”

This is according to one of the many users on this Google Support page (and recently reported by Tom Lawrence on LinkedIn) about an issue with files on Google Drive disappearing. According to a separate report on 9TO5Google, the issue is caused by a bug in the Google Drive desktop app.

So what? Using the cloud is ‘using someone else’s computer’. If their computer fails, they may not be contractually obliged to ensure they can restore your data. This is the case with Google and Microsoft. You are responsible for having a separate backup of your data, even when it’s stored in the cloud. As Lawrence commented, “this is a reminder that just because [your files are] in some cloud service you pay for, you still should have a backup either on site or backed up to another service.”

 

2 – Are you securing all of the doorways into your cloud systems?

Attackers can potentially access critical data on a Google Cloud environment by exploiting a flaw that has not yet been fixed by Google.

This is according to a recent report in SC Magazine. Apparently, a flaw in Google’s domain-wide delegation (DWD), which allows apps to access user data across Google Workspace (e.g. Gmail, Calendar, Drive), could enable an attacker with limited access to a Google environment to escalate this access so they can get at all of the data in the Google environment.

So what? There are many doorways into your cloud environments, and you are responsible for securing many of them. The most obvious doorways are the login accounts that you provide to your staff. But there are other doorways, including the doorway that allows third-party applications to access your cloud environment. Microsoft 365 allows similar access through a facility called ‘Application Consent’. You need to ensure this doorway is secured – For example, by ensuring only administrators can grant access to this doorway.

 

1 – 60 US credit unions impacted by ransomware attack on 1 IT provider.

“A ransomware infection at a cloud IT provider has disrupted services for 60 or so credit unions across the US, all of which were relying on the attacked vendor.”

This is according to a recent report in The Register. Apparently, the US National Credit Union Administration has been helping the credit unions deal with the impact of the attack, which has already caused their systems to be offline for a week.

So what? Be mindful of incidents like this one when you complain about all of the pain-in-the-a things that the DORA (Digital Operational Resilience Act) regulation will force you to do in 2024 to improve your operational resilience and IT third party oversight!