Video: Cloud Cybersecurity Risks

In this lesson, Nick Palazzolo, CPA, dives into the dynamic realm of cloud cybersecurity risks. He clarifies the inherent risks associated with cloud computing, emphasizing potential security vulnerabilities and inadequate access controls that can expose sensitive data. Key concerns like insecure APIs, insider threats, and compliance challenges, especially with regulations such as the GDPR, are discussed in detail. Nick explains the complications arising from misconfigured systems and the often-overlooked aspects of shared security responsibilities between clients and cloud service providers. Furthermore, he connects these concerns to broader issues such as the security lapses in Internet of Things devices and the perils of mobile technology in corporate settings, including unsecured Wi-Fi networks and the threats posed by mobile malware. This lesson offers a comprehensive overview aimed at building stronger awareness and better control practices over cloud-based environments and associated technology.

"Examprep.ai helped me pass all 4 CPA exams on the first try. I highly recommend. I especially like the feedback and ratings the software provides so I know where to focus my time."

Daniel H., CPA

"I can't recommend ExamPrep.ai enough. Nick's lessons turned concepts I struggled with into strengths. I was able to pass FAR right before other exams expired!"

Andrew K, CPA

"I just want to say thank you for the great lesson videos. I couldn't stay awake through lectures of another course. After watching all your FAR lessons I was finally able to pass!"

Alyssa M., CPA Candidate

Video Transcript

Instructor: Nick Palazzolo

Nick Palazzolo is head instructor of ExamPrep.ai CPA Review. Nick's teaching style is engaging & upbeat, combining practical Big 4 tax & assurance expertise with years of 1-on-1 coaching. His lessons are concise and emphasize what you need to know to pass. Whether you're a recent grad or working full-time, we’re confident you can conquer your CPA exams with Nick’s review.

Cite this lesson

Link to this page

[[ citeExample ]]

Copy to clipboard

Copy URL to clipboard

Copy HTML to clipboard

Specific risks to cloud cybersecurity, so the cloud, right, we talked about it, essentially just a bunch of computers, a bunch of servers somewhere else that you're connected to, and that's where all the data is stored. The rapid evolution of technology has brought immense benefits, as we have all seen, glued to our phones and not talking to each other anymore, but it also introduces new cybersecurity risks. With the increasing adoption of cloud computing, Internet of Things, and mobile technologies, we want to understand the risks specific to our cloud technology. So the cloud environment and platforms, sensitive data stored in the cloud can be exposed through security vulnerabilities or inadequate access controls, right, the cloud is convenient, but if you really want information to be secure, put it in a lockbox in one office in one room, right, that's, the person would have to come into that room, know where it is, and break down the lockbox, get in and access the information. It is, now hopefully, again, the cloud service providers that do it, such as Amazon and Google, they've got Microsoft, they've got good protection. Insecure interfaces and APIs, so cloud services are accessed through interfaces or APIs, which if not properly secured, they can be exploited. Insider threats, employees with access to cloud services can misuse data or inadvertently cause security breaches, and yeah, compliance challenges. We talked about the GDPR in our regulations and compliance lesson, this is specific to the EU, making sure that your data is in compliance, that is just, it's costly, it's a concern, and I mean, it's not going to completely ruin your company, but you got to make sure you're in compliance with any sort of frameworks or regulations. For cloud services, misconfiguration and inadequate change control,

Unlock the full video transcript and subtitles support with a free account!

Get more from this lesson

Create an account 7-day free trial. No credit card required.

Security

Module: 3 Concepts, 30 Videos

Threats and Attacks - Overview

0:45

Introduction to Threats and Attacks

3:57

Threat Agents

9:08

Types of Attacks