Cloud Security , Security Operations , Video

Clumio CEO on Why AWS S3 Buckets Pose a Giant Security Risk

Poojan Kumar on Why S3 Bucket Data Is Susceptible to Deletions and Attacks
Poojan Kumar, co-founder and CEO, Clumio

The need for AWS security has increased as S3 buckets have evolved from a dumping ground for data to the home for critical cloud-native applications, says Clumio co-founder and CEO Poojan Kumar.

See Also: Assessing Threats Outside the Perimeter

Information in S3 buckets is susceptible to both accidental deletions and cyberattacks given the vast amount of mission-critical data that resides within this public cloud storage resource, Kumar says. In response, he says Clumio earlier this year launched a service to back up data residing in S3 buckets and enhanced it last month with the ability to instantly recover any S3 data backed up using Clumio (see: Report: Unsecured AWS Bucket Leaked Cancer Website User Data).

"Your on-prem environment is a lot more controlled, and you have control over how you recover and the cost structure," Kumar says. "But in the cloud, if you don't do it the right way, these recoveries can be super expensive."

In a video interview with Information Security Media Group, Kumar also discusses:

  • Why data protection and recovery are essential for S3 buckets;
  • Why AWS customers should get security from Clumio, not AWS;
  • What differentiates Clumio's approach to AWS security from rivals.

Kumar has 18 years of experience in cloud computing and storage and is known for seeing an opportunity for change, innovating and capitalizing on it. He founded and built PernixData - which was acquired by Nutanix in 2016 - and then served as Nutanix's vice president of engineering and products. Earlier in his career, Kumar was head of data products at VMware and founder at Oracle Exadata.


About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.