News | Cloud Storage Security

Antivirus and Data Classification provider enables customers to ingest events into AWS CloudTrail for security and compliance purposes

January 31, 2023 – Today, data security software provider Cloud Storage Security (CSS) is among the first Amazon Web Services (AWS) Partners to integrate with AWS CloudTrail Lake to consolidate activity data reporting. This is noteworthy as historically AWS CloudTrail did not ingest third party data; it logged data generated from AWS services. With this integration, customers can now ingest and analyze events in a CloudTrail-compatible schema from the CSS console to streamline auditing, security investigation, and operational troubleshooting.

On January 5, 2023, AWS automated server-side encryption for all new objects in Amazon Simple Storage Service (SSE-S3).  In this article, we review SSE-S3 (some features may surprise you), discuss how to assess encryption status (with and without help), and touch on how to encrypt existing objects in S3.

Cloud Storage Security (CSS) is always working to improve our users’ experience and we’re excited to share the following noteworthy Antivirus for Amazon S3 updates: Amazon EventBridge integration, AWS Control Tower integration, storage assessment, “suspicious” file identification, proxy enhancements, and read-only root files. 

AWS Control Tower offers account factory customization, enabling you to customize your new and existing AWS accounts prior to provisioning them from within the AWS Control Tower console.  Adding customizations via this native AWS feature saves you time and labor.

Antivirus and data classification provider allows customers to streamline deployment with AWS Control Tower

Cloud Storage Security is always working to improve our users’ experience and we’re excited to share the following Antivirus for Amazon S3 updates: the addition of bucket configuration actions, deployment improvements and enhanced object tagging. 

AWS recognizes data protection provider for its proven technology and deep expertise in helping customers achieve their cloud security goals

Amazon Simple Storage Service (Amazon S3) is widely used to run cloud-native applications, build data lakes, archive data, and backup critical data. In fact, it houses over 200 trillion objects, making it an appealing attack vector.

As cybercriminals develop more sophisticated malware they also develop new targets and new ways of distributing it. In addition to focusing on securing traditional avenues and existing security layers, you need to consider the security of the data that runs through Amazon S3.

The Challenge

Like many public sector agencies, this organization uses Amazon S3 to ingest and store large amounts of data from third party vendors and data brokers for processing.

During a security audit, it was determined that the ingestion of TB of data each month from outside sources is a major attack vector. There was no assurance that the data has been scanned for malware and viruses before it was processed and accessed by agency staff or shared externally with partner agencies.

A wide range of solutions ingest data, store it in Amazon S3 buckets, and share it with downstream users. Often, the ingested data is coming from third-party sources, opening the door to potentially malicious files. This technical deep dive explores how Antivirus for Amazon S3 by Cloud Storage Security allows you to quickly and easily deploy a multi-engine anti-malware scanning solution to manage file protection and malware findings.