Leave a comment

The ability to share files and access applications across devices and borders has quite literally revolutionized the way employees collaborate. But it’s not all good news. New threats, such as the “Man in the Cloud Attack” (MITC), underscore the difficulties in protecting data stored in the cloud. The problem is that very few companies are defending themselves against this new threat, and most don’t fully understand the implications.

1. What is an MITC attack?
2. How can you protect your company?

  • MB

    Morgan Brown

    almost 4 years ago #

    Sorry - how does this have anything to do with growth or marketing? Seems much better suited to a security forum than one that talks about marketing.

    • AO

      Asep Onde

      almost 4 years ago #


      I agree - however, this is actually something that marketers should be aware of. Hack attacks - DDoS attacks, MITC attacks, etc. - disrupt a business' growth in a big way.

      I know because I've been there - hackers cost my business a lot.

      • JB

        Jon Bishop

        almost 4 years ago #

        Why do marketers need to know about security? They're not the ones to protect an app against hackers of fix things should hackers get access.

        This article is way off topic for this site.

      • MB

        Morgan Brown

        almost 4 years ago #

        And security experts should know about marketing their business, but I'm not posting email marketing articles on their security forums.

  • JH

    Joy Healey

    almost 4 years ago #

    That's frightening because I have two sources of cloud storage and it's storing a massive 30 years worth of stuff (some legacy software that's still in use). For client data I always put a copy on their own machine as well.

  • PV

    Philip Verghese Ariel

    about 4 years ago #

    Hi Mark,
    This is an upsetting news! Thanks for making this alert!
    I am sure this is a timely piece and will surely be a great alert to all the users. In fact I was not aware about the MITC attack!
    Thanks for sharing this and for the solution to escape from this attack. Thanks for providing the links to reach the page to get the protection from the Man in the Cloud,! I just registered my details there to get the information to get protection from the attackers. I have accounts in all these places.
    Thank you Erik for sharing this very informative and timely alert to the readers here.
    Best Regards
    ~ Philip

    • DL

      David Leonhardt

      almost 4 years ago #

      Hi Philip.

      Just wait for the Woman in the Cloud. And the Baker in the Cloud. And the Pet Iguana in the Cloud. The Cloud is a security nightmare waiting to happen.

  • MR

    Mike Ryan

    about 4 years ago #

    Yes, staying vigilant and using security detection software is important for any cloud vendor... But this is a self-promotional article and it leads to a 'free consultation' offer.

    Much better solutions:
    1) Encrypting files before they're uploaded to a vulnerable cloud storage provider (dropbox, gdrive, onedrive, etc..)
    2) Using 'zero-knowledge' encryption - this means the data is only encrypted and decrypted on the client device

  • RT

    Roman Temkin

    almost 4 years ago #

    Thanks for this post!

  • JM

    James McAllister

    almost 4 years ago #

    Call me paranoid but I've never really been a huge fan of using cloud storage anyway. It's convenient for sure but it takes the security away from me and forces me to rely on the security of the company, who would be a much more desirable target for a hacker to attack.

    I don't really store a lot of data and I don't have users to protect so I suppose I don't have a lot to worry about but so much is changing with technology so quickly that it's important to be on top of these kind of things so you can protect yourself against them if the time ever comes.

  • GG

    Gail Gardner

    almost 4 years ago #

    What I want to know is what other sites could be affected. What about cloud solutions like my beloved Trello?

    PayPal keeps offering to let users stay logged in. I wonder if they're using the same type of tokens and hackers could target PayPal accounts using this method?

    Personally, I would never choose any "stay logged in" option on a site that has access to finances. If they don't mean on the current device only, it is likely they mean using tokens which exposes users to this type of hack or something similar.

  • RS

    Rachit Singh

    almost 4 years ago #

    It might not sound important for individuals , but for companies, it is a worth noticing thing.

    I use services like dropbox and onedrive for storing my documents and files.

    However, they are not worth stealing and selling. But they have some of my important plans and passwords.

    I'd surely consider the article to enhance safety.

  • RN

    Rajesh Namase

    almost 4 years ago #

    These days we should save our data at multiple locations like external hard disks, because who knows you'll wake up in the morning and will face new vulnerability issue.

    Thanks for sharing this news about security vulnerability.

Join over 70,000 growth pros from companies like Uber, Pinterest & Twitter

Get Weekly Top Posts
High five! You’re in.