We’ve all heard the concerns: While public clouds do a good job protecting our cloud-based systems from outside attackers, what about attacks that may come from other public cloud users? These are known as cross-tenant attacks (sometimes called side-channel attacks), where other tenants on the same public cloud somehow access your data. Should you pay more attention to this fear?
No, you should not pay more attention to cross-tenant attack fears. Here’s why.
First, there are much easier attack vectors to exploit when it comes to public clouds, such as human error. The cloud breaches that I hear about are caused almost 100 percent by human error. Often, people misconfigured their cloud machine instances and thus exposed data that was not meant to be exposed. If enterprises focus on dealing with cloud security, they should be focused there.