Security startup focused on protecting AWS cloud database services from data breaches merges with security software startup focused on scanning Amazon S3 objects for malware
According to a release from the U.S. Department of Justice, “Roughly $350 million in ransom was paid to malicious cyber actors in 2020, a more than 300% increase from the previous year”. With Amazon S3 buckets continuously being the storage medium for uploaded files by most organizations, the attack surface is only increasing when an S3 bucket is left misconfigured and storing infected files.
Poka's connected worker platform for manufacturers leverages Amazon to store a variety of training content and user uploaded files that are then shared with downstream users as part of the application workflow. In order to meet SOC 2 compliance requirements to prove that all files were scanned for potential malware before they were shared by their solution, Poka implemented a homegrown solution leveraging an open-source virus detection engine, AWS Lambdas, and Amazon EFS as the main components. As their customer base and the volume of data and files grew, their in-house solution required increasing maintenance time to meet their real time scanning requirements.
Also Announces Investment Funding from Mistral Venture Partners
Cloud Storage Security, creators of Antivirus for Amazon S3, announced two major milestones today in the growth of the cloud security company. The company has been accepted into the Amazon Web Services (AWS) Independent Software Vendor (ISV) Accelerate Program, a co-sell program for AWS Partners who provide software solutions that run or integrate with AWS. The program helps partners drive new business and accelerate sales cycles by connecting the participating ISVs with the AWS Sales organization.
Cloud Storage Security, creators of Antivirus for Amazon S3, today announced an OEM partnership that will provide Cloud Storage Security customers with increased protection against malware and viruses using Sophos' award-winning anti-malware technology. By integrating Sophos’ advanced virus detection engine into Cloud Storage Security’s easy to use, cloud native scanning solution Antivirus for Amazon S3, Cloud Storage Security will provide organizations with improved protection against malware intrusion into Amazon S3.
We are excited to announce that Rob Melka Partner Solutions Architect at Amazon Web Services (AWS) will be a guest speaker for our webinar: Securing Amazon S3 in the Age of Covid 19.
There is no doubt that as each day goes by, more and more data is migrating into cloud storage. The public cloud, or Infrastructure as a Service (IaaS) as some call it, has become the new normal. Out of all the data store service providers out there like Azure Blob Storage and Google Cloud Storage, the largest by far is Amazon Simple Storage Service (Amazon S3). It has gotten so large that AWS acknowledged their store capacity in the excess of exabytes of storage and trillions of objects. Imagine the size of the earth is measured as one gigabyte. Then the size of the sun would be equivalent to an exabyte. It’s hard to imagine...
As malware attack vectors continue to grow and more and more security features are built above and below the delineation of “Security of the Cloud” (provided by AWS) and “Security in the Cloud” (your job), security teams will need to ensure a proper framework to protect their applications and data.
Positively impacting shareholder value is every CEO’s dream. Negatively impacting shareholder value is every CISO’s nightmare. As more and more data moves to the cloud, additional threat vectors to customer data must be considered. Threats that include malware and viruses for Amazon S3. At the 2018 AWS re:Invent Keynote, AWS S3 VP, Mai-Lan Tomsen Bukovec acknowledged the “tens of trillions of objects” exceeding “exabytes of storage” are being used on Amazon S3. It is hard not to argue Amazon S3 is one of the most successful services provided by AWS. AWS has unlimited emphasis ensuring your data is safe. Customers and AWS leverage many native features and security frameworks including redundancy, bucket permissions, encryption and duplication across regions and availability zones.