Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Google Security

Google Unveils Cybersecurity Programs and Action Team (venturebeat.com) 21

An anonymous reader shares a report: By the end of 2021, cybercrime is expected to cost the world $6 trillion. And by 2025, this figure will climb to $10.5 trillion, according to Cybersecurity Ventures. There's been a rash of recent high-profile cyberattacks, including Colonial Pipeline, the SolarWinds breach, and JBS USA. That's perhaps why 80% of senior IT employees believe that their companies lack sufficient protection against cyberattacks, despite increased security investments made in 2020.

To address the challenges, Google today at Google Cloud Next 2021 debuted Work Safer, a program to help organizations, employees, and partners collaborate in hybrid work environments. It also unveiled a new security-focused task force --- the Cybersecurity Action Team -- and a security and resilience framework, in addition to enhanced security capabilities in Workspace. The announcements come after research showing that companies want cloud providers to increase their security efforts. According to a a recent Tripwire survey, while the majority of enterprises believe that public cloud providers are doing enough to ensure security for users, it's "just barely adequate."

This discussion has been archived. No new comments can be posted.

Google Unveils Cybersecurity Programs and Action Team

Comments Filter:
  • Join us, get locked into our services, never worry about a random data attack. Now they will all be Google branded.
    • Considering the piss-poor job everyone else is doing, that just may be a good incentive. For ALL the cloud providers.

  • Google takes their security seriously. Yubikeys and now Google Titan FIDO tokens do a good job at attack mitigation, where an attacker has to find the oauth token in the web browser and use that.

    The real issue is other businesses. The "security has no ROI" mentality is pervasive in the industry, and in many companies, management does not care, because even in the most calamitous of breaches, companies usually wind up with higher stock in a year or so, and it is forgotten. Even with compliance stuff, thos

    • SolarWinds was an deep hack into software tools.
      and lot's of lockdown may not help when an tool is hacked or you have like buggy print drivers that can be hacked as well.

      Also for some you may just need an hacked printer to copy data to an place that you don't want to your data to go to. And when things like printers can manged by an 3rd party then the local admins may no control over them / they really don't take deep looks into issues with them.

    • Not really. I have no way to setup 2FA unless I use something insecure or expensive.
      • This can depend on platform. On Linux, one can use the Google Authenticator PAM libraries and add the authenticator there, making sure to add the "nullok" value if you want people to be able to log in before they create a .google_authenticator file.

        Windows, or macOS... different story. Perhaps Duo.

        Directory server wise, if one is using FreeIPA or Red Hat IdM, Google Authenticator style 2FA can be built into the auth process, so a user types their password+their six digit code for access.

  • How maintain the illusion of security while making sure you give us all your data.

    • If they're already using their services, isn't it a bit late to be complaining about privacy? Far as illusion, well all the leaks already shout, "illusion", what's one more?

  • Seriously, is google the right company to teach us about online security?

    https://grapheneos.org/

  • Get it own theme song. Perhaps they should use Trey Parker and Matt Stone to compose it.
  • I'm guessing something tactical. Definitely something tactical.
  • by xanthos ( 73578 ) <[xanthos] [at] [toke.com]> on Tuesday October 12, 2021 @10:24AM (#61883987)
    From the article: "The Cybersecurity Action Team offers blueprints and architectures for deploying Google Cloud products .." So the first step in Google's $10 billion security initiative is to deploy sales teams to sell Google cloud subscriptions. Anybody surprised?
    • by AmiMoJo ( 196126 )

      I'd rather companies do that than try to roll their own. Google is one of the few that has never been hacked.

  • despite increased security investments made in 2020.

    Because throwing money at a problem isn't always enough to solve it.

    I've worked in Cybersecurity my entire career. It's been pretty pathetic and it still is. The vast majority of companies would fall to the first seriously interested attacker, and a seizable share would fall to anyone who takes a good look. The reason they're still standing is that the vast majority of attacks are automated, scattershot crap using low-level, outdated exploits - and that is because there are so many easy victims that most at

  • None of that matters as long as your computer can be compromised by opening an email attachment or clicking on a malicious link.
  • By the end of 2021, cybercrime is expected to cost the world $6 trillion.

    This has to be overstated. The GDP of the USA in 2021 was $22.7 trillion so that would mean that cybercrime would consume more than 25% of that. $6 trillion is more than the GDP of Japan. I don't see how the world economy can function with that kind of parasitic load.

    Can anyone substantiate these numbers?

Put your Nose to the Grindstone! -- Amalgamated Plastic Surgeons and Toolmakers, Ltd.

Working...