SDxCentral
Join Login
SD-WAN 4 5G 5 MEC IoT 4 SDN 5 NFV 6 Containers 5 Cloud 9 Security 8 AI 2 Converged DC 3 SD-Storage 2 NPM/APM 1

Login to SDxCentral

Your login link has been emailed to you.

Or login with your password

Enter Your Password

Forgot your password? Login as a different user?
  • Directory
  • Reports
  • Webinars
  • eBooks
  • eBriefs
  • White Papers
  • Sponsored Content
  • Videos
  • Resources
  • Use Cases
  • Participate

Join SDxCentral and get information tailored to your particular interests everyday.

Join
Sponsored:
Citrix 3 Dell EMC 2 Linux Foundation 11 Lumina OCP OpenStack 11 Riverbed Verizon 1 VMware 6

Google Cloud Security Blitz Attacks Email Phishing, Improves Visibility

Google Cloud Security Blitz Attacks Email Phishing, Improves Visibility
Jessica Lyons Hardcastle
Jessica Lyons HardcastleMarch 22, 2018
11:03 am PT

The latest Google cloud security blitz unleashed more than 20 updates. It’s a push to get companies to move their workloads to Google’s cloud — and off of Amazon Web Services (AWS) and Microsoft Azure.

The new security capabilities cover Google Cloud Platform (GCP), G Suite, and Chrome Enterprise. They include features like better visibility across cloud services and potential threats and beefed up security against email phishing attacks.

Related Articles

How to Make Money in SDN
How to Make Money in SDN
U.S. Justice Department Investigates Huawei
U.S. Justice Department Investigates Huawei
ADVA Trials Use ONAP ONOS to Control Optical Network Assets
ADVA Trials Use ONAP, ONOS to Control Optical Network Assets
Ericsson-70-of-Service-Providers-Will-Focus-on-Cellular-IoT
Ericsson: 70% of Service Providers Will Focus on Cellular IoT
Juniper Unveils Contrail Software to Compete with Cisco, VMware
Juniper Unveils Contrail Software to Compete With Cisco, VMware

Google also partnered with four additional enterprise mobility management providers (it announced a partnership with VMware AirWatch last year) in a move that allows IT admins to manage security policies across devices from a single place. The new partners are Cisco Meraki, Citrix XenMobile, IBM MaaS360, and ManageEngine Mobile Device Manager Plus, a division of Zoho Corp.

Here’s a rundown of some of the other security updates:

  • Cloud Security Command Center (Cloud SCC) provides better visibility into GCP services including App Engine, Compute Engine, Cloud Storage, and Cloud Datastore. It lets enterprises monitor GCP cloud assets, scan storage systems for sensitive data, detect vulnerabilities, and review access rights from a single dashboard. In addition to using Google’s own threat detection, it works with security partners such as Cloudflare, CrowdStrike, Dome9, Palo Alto Networks, Qualys, and RedLock. It’s currently in alpha.
  • VPC Service Controls, in beta, provides virtual security perimeters for API-based GCP services such as Google Cloud Storage, BigQuery, and Bigtable. It’s a managed service, and it establishes a private, direct link between GCP and hybrid VPC networks using Cloud VPN or Cloud Dedicated Interconnect. This allows companies to store data in the cloud but access it securely from on-premises data centers or cloud-based virtual machines. It also provides context-aware access control for GCP resources using the Access Context Manager feature, which lets enterprises create control policies based on attributes like user location and IP address.
  • Google is giving users more visibility into how it’s using their data with Access Transparency. This service will provide customers with an audit log of authorized administrative accesses by Google “for many GCP services,” according to a blog post by Jennifer Lin, director of product management, GCP security and privacy. The cloud company will also give users justification for those accesses, and it promises to add more services to the list throughout the year.
  • Default-on email protections target phishing attacks by automatically flagging emails from unauthenticated senders as well as untrusted senders that have encrypted attachments or embedded scripts. These new security controls also warn against email that tries to spoof employee names or that comes from a domain that looks similar to your own domain. And they scan images for other phishing indicators and expand shortened URLs to uncover malicious links.
  • Device management for mobile devices that access G Suite lets admins see which devices access corporate data from a single dashboard. It also enforces pass codes and can erase confidential data on Android and iOS devices. It does this without requiring employees to install profiles on these devices.
  • New additions to the G Suite security center include security charts showing OAuth activity and business email compromise (BEC) scam threats as well as improved protection against phishing scams. Additionally, new mobile management charts show when devices have been hijacked, rooted or jailbroken, as well as when other suspicious device activity.

The Google cloud security updates come as more companies are using public and private cloud infrastructure. And security is the most commonly cited benefit of hosting networks in the cloud, according to Cisco’s most recent annual security report. (It’s also worth noting that Cisco has a hybrid cloud partnership with Google and plans to deploy the service in the second half of this year).

But as Google continues to struggle to pull market share from no. 1 and no. 2 cloud providers AWS and Microsoft, respectively, we’ll be watching closely to see if its security investments pay off.

Share:

Article Categories:

News

Jessica Lyons Hardcastle

About Jessica Lyons Hardcastle

Jessica is a Senior Editor, covering next-generation data centers, security, and software-defined storage at SDxCentral. She has worked as an editor and reporter for more than 15 years at a number of B2B publications including Environmental Leader, Energy Manager Today, Solar Novus Today and Silicon Valley Business Journal. Jessica is based in the Silicon Valley.

Have a story? Have a News Tip?

Send it to SDxCentral editors as editors@sdxcentral.com.

Leave a Reply Cancel reply

You must be logged in to post a comment.

Join SDxCentral™ to receive exclusive access.

Sign Up Now!

New Report: 2018 Future of the Converged Data Center

2018 Future of the Converged Data Center is available for free download. In this FREE Report, find out why CI and HCI are the hot new platforms in 2018, and understand their relevance to enterprise, cloud and service provider data centers.

About SDxCentral

  • About Us
  • Editorial Team
  • Editorial Calendar
  • Work With Us
  • Careers at SDxCentral
  • Support
  • Legal
  • Contact Us

Engage With us

This material may not be copied, reproduced, or modified in whole or in part for any purpose except with express written permission from an authorized representative of SDxCentral, LLC. In addition to such written permission to copy, reproduce, or modify this document in whole or part, an acknowledgement of the authors of the document and all applicable portions of the copyright notice must be clearly referenced. All Rights Reserved.

© 2012-2018 SDxCentral, LLC, All Rights Reserved. SDNCentral™, the SDNCentral logo, SDxCentral™, SDxCentral logo, SDxNews™, SDxTech™, SDx™, the SDx logo, and DemoFriday™ are trademarks of SDxCentral, LLC in the U.S. and other countries.

  • Terms of Service
  • Privacy

Please enter your Business Email to view this asset:

We are requesting you provide a valid business, education, non-profit or government email address not from free or temporary email providers or ISPs. If you feel that our filters are incorrectly disallowing your email, please contact us at support@sdxcentral.com.