Pop quiz
To:Brew Readers
IT Brew // Morning Brew // Update
What’s the shared responsibility model?
September 12, 2024 View Online | Sign Up

IT Brew

Amazon Web Services BizApps

It’s Thursday! Lots of new phones to consider this week. But remember: Every phone is foldable if you want it bad enough.

In today’s edition:

Sharing is caring

A life beyond the Veeam

Insurance gap

—Brianna Monsanto, Eoin Higgins, Alex Zank

CLOUD

Mission responsible

IT Server in the clouds Amelia Kinsinger

According to a recent survey, roughly half of IT and cybersecurity professionals are unfamiliar with a popular golden rule for security in the clouds…or at least the name of it.

An August Dark Reading report found that only 49% of respondents surveyed were familiar with the “shared responsibility model,” a cloud security framework that outlines the responsibilities of a cloud service provider and its customers. Cloud service providers such as Microsoft Azure, Google Cloud, and Amazon Web Services each have their own version of the accountability model, which allows them to clearly communicate what security responsibilities they are responsible for versus what areas are in the control of a customer.

The survey, which was commissioned by cybersecurity company OPSWAT in partnership with F5, queried 131 IT and cybersecurity professionals from companies of all sizes earlier this year.

On the tip of your tongue. Adam Rocker, director at OPSWAT, told IT Brew that the survey’s findings were a bit surprising, but gave the respondents the benefit of the doubt in their understanding of the model, which he claims was popularized primarily by AWS.

“They may not be familiar with the term, but I think they’re familiar with the concept,” he said.

Read the rest here.BM

   

PRESENTED BY AMAZON WEB SERVICES BIZAPPS

Did somebody say…AI?

Amazon Web Services BizApps

Yep. Pretty much everyone is saying it, actually. AI think pieces, strategies, and insights are almost everywhere. So where can we cut through the noise and get to the relevant stuff?

At Amazon Web Services’ (AWS) upcoming event centering on AI. Join Forrester and top software providers to learn how AI is transforming operations. Discover implementation strategies, ROI analysis, and performance-boosting tools for the C-suite.

Learn from industry leaders on how to implement AI strategically, measure its impact, and position your business for long-term success.

All you’ve gotta do is register here.

CYBERSECURITY

Veeam team

A graphic of a hacked computer mainframe with the words "ransomware" in red and an image of a white-hooded figure. Japatino/Getty Images

Software recovery company Veeam has a series of vulnerabilities that could open the door to exploits, prominent cybersecurity firms revealed in September.

According to a Rapid7 post on September 9, Veeam has a number of Common Vulnerabilities and Exposures—CVEs—that could be exploited by bad actors. In a blog post, Rapid7 detailed the concerns while making clear that, thus far, there is no evidence of bad actors taking advantage of the vulnerabilities.

“It is possible that one or more of these vulnerabilities may be used to facilitate extortion attacks,” the firm wrote. “More than 20% of Rapid7 incident response cases in 2024 so far have involved Veeam being accessed or exploited in some manner, typically once an adversary has already established a foothold in the target environment.”

Target identified. Rapid7’s report singled out CVE-2024-40711, an unauthenticated remote code execution vulnerability that targets Veeam’s proprietary backup and replication system. The vulnerability was initially detected by Florian Hauser of CODE WHITE, and listed by Veeam as “critical.”

Read more here.EH

   

RISK MANAGEMENT

Closing the cyber gap

Cyber risk insurance gap Sarayut Thaneerat/Getty Images

Insurance firms, technology companies, and governments, assemble! It’s time for an “Avengers: Endgame”-style battle against the world’s cyber threats.

Minus the MCU reference, that’s more or less the message that insurance carrier Zurich and insurance broker Marsh McLennan convey in a new white paper.

“Cyber threats are outpacing the ability of traditional insurance and risk management approaches to fully mitigate them,” according to the paper’s foreword, signed by Marsh McLennan president and CEO John Doyle and Zurich Group CEO Mario Greco. “The resulting cyber risk protection gap is a societal challenge that urgently needs collective action from both the insurance industry and the public sector.”

Read the full story on CFO Brew.—AZ

   

TOGETHER WITH RUBRIK

Rubrik

Is that a threat? Your data is likely susceptible to more than a few threats. It’s…not exactly pleasant knowledge. What is? Learning how to meet these threats head-on at Rubrik’s virtual Data Security Summit. It’ll cover threat trends, modern security strategies, and how to protect and recover as a whole. Save your seat.

PATCH NOTES

Picture of data with "Clean Me" written on it + bottle of cleaner in front of it, Patch Notes Francis Scialabba

Today’s top IT reads.

Stat: 90%. That’s the gross margin reported by cloud and network privatization startup VAST Data as AI places enormous new demands on tech infrastructure. (the Wall Street Journal)

Quote: “This is a celebration of technology.”—David Rosenthal, one of the creators and host of the podcast Acquired, on the show’s recent guest, Mark Zuckerberg (the New York Times)

Read: Two members of the so-called “Terrorgram Collective,” white supremacists using the messaging app Telegram to incite violence, were indicted by the FBI. (The Record)

Keep an AI out: Join Forrester and top software providers for Amazon Web Services’ (AWS) upcoming event to learn how AI is transforming ops. Want implementation strategies and performance-boosting tools for the C-suite? Register here.*

*A message from our sponsor.

JOBS

Break free from the job-board cycle. CollabWORK connects you with relevant job openings curated specifically for communities you're already part of—like IT Brew. Find high-quality opportunities and land your next big break by joining CollabWORK today.

SHARE THE BREW

Share IT Brew with your coworkers, acquire free Brew swag, and then make new friends as a result of your fresh Brew swag.

We’re saying we’ll give you free stuff and more friends if you share a link. One link.

Your referral count: 2

Click to Share

Or copy & paste your referral link to others:
itbrew.com/r/?kid=9ec4d467

         
ADVERTISE // CAREERS // SHOP // FAQ

Update your email preferences or unsubscribe here.
View our privacy policy here.

Copyright © 2024 Morning Brew. All rights reserved.
22 W 19th St, 4th Floor, New York, NY 10011
Top insights for IT pros

From cybersecurity and big data to cloud computing, IT Brew covers the latest trends shaping business tech in our 4x weekly newsletter, virtual events with industry experts, and digital guides.