Corporate data stored in the cloud is accidentally being exposed to the public in some cases because of simple configuration errors, an unexpected byproduct of the cloud’s explosive and unchecked growth.
Nonprofit GDI Foundation estimates there have been at least 175,000 instances this year of misconfigured software and services in the cloud that could have led to corporate data being exposed, according to the Wall Street Journal.
Configuration errors are common, the WSJ reports, and are often the product of users unintentionally setting access permissions that allow third parties to see a company’s private data.
Security experts say IT departments need to do a better job of tracking online assets, knowing when to install security patches and staying alert to whether developers are making changes that could pose risks. But those experts also say that many cloud users just don’t have the expertise to maintain necessary levels of security that are needed.