Press ReleaseCloud SecurityResearch

‘Securing the Cloud’ Industry Trend Report by SUSE Reveals Cloud Security Challenges in Era of AI

Generative AI Has Quickly Emerged as a Significant threat in Cloud Security

Photo of CSA Editorial CSA Editorial Send an email October 17, 2024
5 minutes read
Securing the Cloud

SUSE®, a global leader in innovative, open and secure enterprise-grade solutions, has released its first ever “Securing the Cloud” APAC 2024 trend report. The industry report explores cloud security challenges in the Asia-Pacific region, focusing on the impact of Generative AI (Gen AI) and Edge computing on cloud security.

The 2024 APAC edition of “Securing the Cloud,” which polled stakeholders across China, Singapore, India, Japan, South Korea, Indonesia, and Australia, sheds light on the pressing challenges faced by IT teams in securing increasingly complex cloud and edge environments and identifies key challenges to cloud adoption. It recognises that APAC IT decision-makers face a unique set of opportunities and challenges and highlights significant differences in priorities and concerns across APAC countries.

‘Securing the Cloud’ APAC Edition: What It Found Out

Key Findings of the “Securing the Cloud” APAC edition include the following:

  • Privacy and data security concerns around Gen AI. 57% of IT decision-makers are worried about privacy and data security in GenAI (Generative Artificial Intelligence) cloud security.
  • High incidence of cloud and edge security breaches. 64% and 62% of teams have confirmed a cloud or edge security incident over the last 12 months respectively, highlighting the pervasive nature of security challenges in the APAC region.
  • Conditional enthusiasm for cloud migration. The high willingness (84%) to migrate more workloads to the cloud or edge if data safety can be guaranteed indicates a strong potential for increased cloud adoption. However, this enthusiasm is heavily contingent on the assurance of robust security measures, indicating that security remains a critical barrier to broader cloud adoption in the region.
  • Highest concerns around ransomware attacks. 34% of respondents cite ransomware attacks as their top security concern, followed by attacks exploiting zero-day vulnerabilities (27%), as well as visibility controls to sensitive data being accessed in the Cloud (23%).
  • Focus on supply chain security. 33% of IT decision-makers intend to review their software supply chain to increase security.

Vishal Ghariwala, Chief Technology Officer at SUSE Asia Pacific, commented on the “Securing the Cloud” report results, stating: “As the report highlights, the growing complexity of the digital landscape, fueled by rapid changes brought by GenAI and edge computing, is creating new and unprecedented security challenges for organisations across APAC. This underscores the need for continuous investment and tailored security strategies in the region.”

Ghariwala added: “We also saw how regulatory and technological differences are influencing how security risks are perceived and prioritised. SUSE remains committed to supporting businesses with tailored open source solutions to ensure security in this new digital landscape. By leveraging open source, organisations can be on the front foot to protect and advance their cloud security practices across the dynamic market of APAC.”

Gen AI Emerges as Key Security Concern Among IT Decision-Makers Across APAC Countries 

The “Securing the Cloud” report also indicates that the priorities and concerns of different APAC countries diverge significantly. While Gen AI has rapidly emerged as a key threat across the region, 25% of Japanese stakeholders believe there are Gen AI-related security risks.

  • According to the report,privacy and data security (57%) and AI-powered cyberattacks (55%) are the top concerns in Gen AI cloud security.
  • Overall, markets diverged in their perceptions of the strongest risks.Privacy and data security were the biggest risks in Indonesia (79%), Singapore (66%), China (62%), South Korea (55%), and Australia (52%), whereas AI-powered cyberattacks were the primary concern in India (63%) and Japan (39%).
  • Younger IT professionals demonstrate the greatest awareness of GenAI-related security risks.Only 4% of respondents in the 18-54 age group did not believe there to be any risk, compared to 10% amongst those older than 55.

A high level of cloud and edge-related security incidents was reported across the APAC region, with investment in security matching the identified challenges.

On average,the “Securing the Cloud” report found that IT decision-makers in the APAC region experienced 2.6 cloud-related security incidents in the last year—with India (4.4) and Indonesia (3.8) being the most affected, and Australia (1.2) and Japan (1.8) the least.

  • 64% of respondents confirmed a cloud security incident over the last 12 months, while most respondents (62%) reported at least one Edge-related security incident in the past year.
  • India and Indonesia were the most severely affected, with 35% and 31% of respondents reporting five or more Edge-related security incidents, respectively
  • The report indicates strong divergences in the security practices of different markets. The most common current security practices include security automation (39%), DoS or DDoS protection (36%), or cloud (CPSM, CWPP, or CNAPP) solutions (34%).
  • Kubernetes network policies are a popular solution in China (33%) and Singapore (32%)but are a less popular solution in general (15% across the APAC region).
  • The substantial portion of IT budgets allocated to cloud native security (30.9%) reflects the prioritisation of security in operational strategies.

Ransomware Attacks Are the Top Cloud Security Concern for APAC Countries

Ransomware attacks were identified in the “Securing the Cloud” report as a key security issue by 34% of IT professionals. This is followed by attacks on running services using unknown vulnerabilities (zero-days) at 27%.

  • Concerns around different security issues vary considerably by market.

Ransomware attacks are rated a considerably higher risk in South Korea (48% of respondents identifying it as one of their biggest security concerns) and Australia (44%) compared to only 20% in China.

  • Chinese and Singaporean IT stakeholders identified different sets of challenges in managing and securing data at the edge.In China, integrating edge solutions with existing IT systems (37%) and implementing automated security mechanisms management and distribution (37%) were considered the two most important challenges. In Singapore, implementing zero-trust security measures (44%) is considered a top challenge.

In-House Auditing of Vendor Software: Key to Mitigating Software Supply Chain Attack Risks

According to the “Securing the Cloud” report, one in four IT decision-makers believe that government-recognised supply chain related security certifications (24%) will become more of a priority for them over the next 12 months.

  • To mitigate supply chain risks, APACIT decision-makers prioritise leveraging vendor-backed software (44%) and certifying software build processes (39%).
  • Significantly diverging from other markets, a quarter of Japanese IT professionals (24%) indicate they have not taken any measuresagainst supply chain risks.

Nothing Surprising Here: ‘Securing the Cloud’ Report Underscores Increasing Popularity of the Cloud and AI

In many ways, there are no surprises in the results of SUSE’s “Securing the Cloud” report. If anything, it is testament yet again to how popular the cloud and AI have become, along with Edge applications.

Cybercriminals, of course, are taking note as well, and are exploting the increased attack surface these emerging technologies have brought on. This realisation among threat actors will pose even more challenges moving forward as they will look to target these attack vectors more and more.

As such, organisations in APAC, and even worldwide, will need to adjust accordingly and keep pace with this evolving landscape. Otherwise, the risk of an attack increases exponentially, and that would be bad for business for certain. This is why businesses will need to take note of these findings so they can strategise for the future especially if they plan to push forward with their investments in the cloud, Gen AI, and Edge.

The “Securing the Cloud” report’s results reveal the unique and diverging security challenges faced by APAC countries in the adoption of cloud and edge technologies, including threats from ransomware attacks, privacy and data issues related to generative AI, and AI-powered cyberattacks.

The complete “Securing the Cloud” trend report by SUSE can be accessed here.

Tags
Photo of CSA Editorial CSA Editorial Send an email October 17, 2024
5 minutes read
Photo of CSA Editorial

CSA Editorial

Launched in Jan 2018, in partnership with Cyber Security Malaysia (an agency under MOSTI). CSA is a news and content platform focusing on key issues in cybersecurity in the region. CSA is targeted to serve the needs of cybersecurity professionals, IT professionals, Risk professionals and C-Levels who have an obligation to understand the impact of cyber threats.

Related Articles

Financial Phishing

Financial Phishing Continues to Be Menace to SEA Companies—Kaspersky

November 28, 2024
Keeper Security

Williams Racing Chooses Keeper Security to Safeguard Data in Formula 1’s High-Stakes, Data-Driven World

November 28, 2024
resilient cybersecurity frameworks

Beyond Legislation: How Businesses Can Build Resilient Cybersecurity Frameworks

November 28, 2024
Trend Micro

Trend Micro Safeguards Cloud Data of Healthcare AI Innovation Leader

November 27, 2024

Leave a Reply

Your email address will not be published. Required fields are marked *

(c) Asia Online Publishing Group 2024 - Media and PR enquiries - editor@aopg.net