Notifications
Clear all
Topic starter
09/06/2022 7:27 pm
An organization has decided to host its web application and database in the cloud.
Which of the following BEST describes the security concerns for this decision?
- A . Access to the organization's servers could be exposed to other cloud-provider clients
- B . The cloud vendor is a new attack vector within the supply chain
- C . Outsourcing the code development adds risk to the cloud provider
- D . Vendor support will cease when the hosting platforms reach EO
Suggested Answer: B
Explanation:
Supply chain attacks piggyback legitimate processes to gain uninhibited access into a business's ecosystem. This attack begins with infiltrating a vendor's security defences. This process is usually much simpler than attacking a victim directly due to the unfortunate myopic cybersecurity practices of many vendors.26 May 2021
https://www.wired.com/story/hacker-lexicon-what-is-a-supply-chain-attack/#:~:text=That%20insidious%20and%20increasingly%20common,piece%20of%20software%20or%20hardware.
https://resources.infosecinstitute.com/topic/cloud-computing-attacks-vectors-and-counter-measures/
Explanation:
Supply chain attacks piggyback legitimate processes to gain uninhibited access into a business's ecosystem. This attack begins with infiltrating a vendor's security defences. This process is usually much simpler than attacking a victim directly due to the unfortunate myopic cybersecurity practices of many vendors.26 May 2021
https://www.wired.com/story/hacker-lexicon-what-is-a-supply-chain-attack/#:~:text=That%20insidious%20and%20increasingly%20common,piece%20of%20software%20or%20hardware.
https://resources.infosecinstitute.com/topic/cloud-computing-attacks-vectors-and-counter-measures/