Dave's Blog

Protect the chain as data flows from the keystroke to the cloud

January 29, 2021
Data is at risk from the second that a key is pressed on an endpoint to the point when it reaches the corporate cloud and is stored. In fact, the most vulnerable point in the entire process is at the very beginning when the user presses a key, and this is where protection needs to be prioritised.

The growth in remote working in recent months has highlighted weaknesses in the security chain, not least in unmanaged devices which are being used to remotely access networks. Data in an organisation’s cloud could be fully secured, but with a keylogger installed on an endpoint laptop which has lower security posture, an attacker could have full access as the user logs-in and to everything the user enters at the keyboard or displays in a local application. This is why, along with spyware, keylogging malware has been ranked as the highest threat.

When thinking about securing the data flow in the corporate cloud ecosystem CSO’s should start at the beginning and examine all the threats starting from the moment a user presses a key.

There are three phases to consider:

  • From the keystroke to the application – Kernel-level keyloggers are notoriously difficult to identify and deal with and require solutions that specifically protect the data being entered
  • Data in the application – At this point the danger moves to screen capture, DLL injection and Man-in-the-Browser attacks and a range of preventative measures can be taken here from anti-screen capture methods, containerisation and secure, locked-down browsers.
  • Transmission to the cloud – Whether a document is being saved or a website is submitted, the main threat is Man-in-the-Middle. Attacks of this sort are less common, but encrypted protection mechanisms do ensure transmission in well secured.

To find out more about protecting each of these phases and securing data once it reaches the cloud for processing or storage, please read the full article at SC Magazine. Given the vulnerabilities of systems as a result of remote networking, security must be prioritised and it is important to start with an understanding of what is needed at each stage from the first keystroke until data reaches its cloud destination.

Related Products

explore products

CryptoSentry

CryptoSentry stops ransomware. Once installed on your employees’ devices, it will constantly monitor for suspicious encryption activity.

Learn more

Data Protection Suite

This suite protects all eCommerce and other online business from online fraud and prevents personal and financial data from being stolen.

Learn more

DarkSentry

A range of services designed to provide real time threat intelligence and alerts to keep you ahead of cybersecurity risks.

Learn more

Related News & Resources

RESOURCES
Dave's Blog

Protect the chain as data flows from the keystroke to the cloud

July 24, 2020
Read more
Dave's Blog

Financial Services data is at risk from attacks on unprotected endpoints

August 28, 2020
Read more
Dave's Blog

Equipping remote call centre agents to protect customer data

September 22, 2020
Read more
+44 203 478 1300
UK Headquarters

SentryBay
20 Little Britain
London
EC1A 7DH
+1 949 394 4902
US Headquarters

SentryBay
16900 Ashton Oaks
Charlotte, North Carolina
28278
+61 1300 010 733
Australia Headquarters

SentryBay
33/640 Geelong Road
Melbourne
Victoria 3012
BECOME A PARTNER
SentryBay is a privately held firm headquartered in London with offices in the USA and Australasia and clients and partners globally.
Copyright© 2021 SentryBay
Privacy Policy