Story image

NZ data centres hacked through self-regulation

09 May 13

Failure by New Zealand Data Centres to submit to independent international cloud security auditing means Kiwis are more vulnerable than ever to cyber attacks.

That is according to Lume managing director Richard Cheeseman, who says the growing number of attacks against New Zealand web sites and servers have a better chance of being averted if Data Centres moved away from self-regulation to more rigorous international standards.

“SSAE 16 audits, Cloud Security Alliance self-audits and ISO 27001 certification are some ways that a Data Centre’s security controls can be strengthened through proper auditing, preferably by an independent body, instead of getting on with it themselves and declaring themselves secure without any visibility to their customers on how this is achieved," he says.

Believing commercial hackers aren’t necessarily interested in making their presence known or with ‘taking down’ sites, Cheeseman continued:

“They want the personal data – your personal data – for use by organised crime, including credit card numbers.

“There was a time when hackers went after the big fish internationally, but with so much more content and information available now, even the smaller New Zealand targets have become attractive.

“The introduction of super fast broadband makes the hackers’ job a lot easier too.”

He said New Zealand companies and everyday users should also take steps to ensure their software is updated.

“Patches coming through from companies such as Microsoft are there to repair known vulnerabilities.

"You can keep yourself more secure by keeping up to date."

Should New Zealand data centres banish self-regulation? Tell us your thoughts below

Dell dominates enterprise storage market, HPE declines
The enterprise storage system market continues to be a goldmine for most vendors with demand relentlessly rising year-on-year.
The key to financial institutions’ path to digital dominance
By 2020, about 1.7 megabytes a second of new information will be created for every human being on the planet.
Is Supermicro innocent? 3rd party test finds no malicious hardware
One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.
Record revenues from servers selling like hot cakes
The relentless demand for data has resulted in another robust quarter for the global server market with impressive growth.
Opinion: Critical data centre operations is just like F1
Schneider's David Gentry believes critical data centre operations share many parallels to a formula 1 race car team.
MulteFire announces industrial IoT network specification
The specification aims to deliver robust wireless network capabilities for Industrial IoT and enterprises.
Google Cloud, Palo Alto Networks extend partnership
Google Cloud and Palo Alto Networks have extended their partnership to include more security features and customer support for all major public clouds.
DigiCert conquers Google's distrust of Symantec certs
“This could have been an extremely disruptive event to online commerce," comments DigiCert CEO John Merrill.