Category: G Suite Security

Articles about Ransomware and malware protection, data security and data leak prevention.

G Suite Security Best Practices: Data Loss Prevention (DLP)

data loss prevention (DLP) for G Suite

Organizations today who already have a presence in the public cloud, or that look to have a public cloud presence in the near future, have to take G Suite security very seriously. Today’s modern businesses with digital resources have to be concerned with data security that exists not only on premise, but in the public cloud. G Suite administrators need to follow certain security best practices to ensure that the data and identity resources living in the public cloud are secure.

Read more

Key Insights on Cybersecurity Risks for CEOs and Management Teams

cyber risk management

Cybersecurity has long been mistakenly viewed as an information technology problem that was only the concern of skilled IT staff. The reality is that cybersecurity should be considered as part of core business concerns, strategy, and planning. This should include the attention of top level management. CEOs should be very concerned about cybersecurity in their organizations. Never before have businesses had more to lose when it comes to a cybersecurity breach.

Read more

4 Cybersecurity Lessons Learned from the Facebook Data Leak

4 Cybersecurity Lessons Learned from the Facebook Data Leak?

Data privacy today is becoming increasingly complex and elusive. It seems in today’s world, everyone has an online presence. This includes various social media accounts, online banking accounts, membership accounts, utility company accounts, service accounts, and the list goes on and on. Even normal everyday users who do only a few things online will have a dozen or more accounts they can call to mind.

When we stop and think about our data as it exists online, it can contain personal information that we would not want to have exposed. Social media and data privacy has become a very heated subject, especially with the recent Facebook data scandal that has been topping news headlines for the past few days. It helps to shed light on an increasingly difficult “fine line” that tech giants and large corporations are treading with our personal data.

Read more

Data Breach in the Cloud: How to Prevent, Avoid and Reduce

How to Reduce, Prevent and Avoid Data Breaches in the Cloud
Today, organizations are placing more data as well as infrastructure in the public cloud. Public cloud has made it possible for organizations to be much more efficient, agile, and to integrate new technologies much more quickly. However, with all the benefits that public cloud brings to the table in regard to features and functionality, there are concerns when we think about the security of public cloud data and the accessibility of public cloud data when it exists in someone else’s data center.

Read more

G Suite Security Best Practices for High Risk Apps Control

G Suite Security 0 4698

g suite security for risky apps

One of the powerful features of public cloud environments such as Google G Suite is the ability to take advantage of the huge ecosystem of third-party apps available. The third-party apps found in the G Suite marketplace offer a wide range of quality, enterprise focused apps that add functionality and features to the native G Suite environment. These can include many useful applications to organizations such as CRM apps, Project management apps, and Admin tools. These are easily accessed from the G Suite environment with a Google account. While third-party apps offer tremendous business value to a G Suite organization, they also present an inherent danger to the overall security stance of a G Suite environment.

Read more

G Suite Security: Insider Threat Control with Spinbackup DLP

G Suite Security 0 4439

insider threat control dlp for g suite security

Often in the world of cyber security, many IT administrators focus on outside threats that exist on the perimeter of the datacenter. The risks presented to organizations from outside threats is very real, whether in the form of an attacker, or a malicious bit of code trying to infiltrate vital systems. However, it is often the case that dangerous insider threats come from within the internal networks used by organizations for business-critical functions. Insider-threats are very real and need to be addressed accordingly.

Read more

G Suite Security Best Practices for Data Leak Prevention

g suite security best practices data leak prevention

As we discussed in the previous post, G Suite administrators have to take security concerns very seriously, especially when it comes to keeping their organizational data secure. This involves two aspects: Data Loss prevention and Data Leak prevention. As we discussed previously, data loss can be the result of accidental deletion, such as when an employee may inadvertently delete files. However, even more alarming is data loss as the result of intentional means, such as targeted ransomware attacks.

Read more

Security Risks of Using Google Add-Ons

What Are the Security Risks of Using Google Add-Ons

Google add-ons were introduced in 2014 as a way to bring additional functionality to Google Docs and Sheets by installing plugins published by third-party developers.

Add-ons can be browsed and installed directly from within G Suite by clicking the “Add-ons’ tab in the main menu of any document you’re working on. The fact that these add-ons are so easy to install and seem to be officially approved by Google may lull users into a false sense of security that they are as safe as using G Suite itself, but in fact third-party add-ons can introduce new security risks into your organization.

Read more

How to Prevent CA Security Breaches

Compromised CA Certificate Attacks

Certificate authentication plays a major role in securing online resources, and most organizations utilize certificates to secure communication between both hosted resources and those that are accessed. It is a more secure way of authenticating users compared to the legacy username and password mechanism. Certificate authentication uses asymmetric cryptography, meaning that it is able to separate out 1) those who can verify the link between the physical identity and the cryptographic public key and 2) Those who can authenticate the user. However, user certificates are only as good as the Certificate Authorities, or CAs, that identify them. Attackers have certainly targeted the CAs as a means to issue unauthorized certificates or impersonate certificates for authentication. Let’s take a look at compromised CA Certificate attacks and their impacts.

Read more