Cryptomining attacks have become a common menace for many organizations, causing unauthorized compute costs that can run into hundreds of thousands of dollars within days. According to the Google Cybersecurity Action Team (GCAT) September 2022 Threat Horizons Report, 65% of compromised google cloud accounts have experienced cryptocurrency mining.
The Pervasiveness of Cryptomining Attacks
Cybercriminals continue to target cloud environments for cryptomining, exploiting vulnerabilities to plant malware that mines for cryptocurrencies using the processing power of unsuspecting businesses. Addressing this threat requires effective detection mechanisms, which has been a major focus for Google Cloud’s Security Command Center Premium, their built-in security and risk management solution.
The New Cryptomining Protection Program
In a bid to instill more confidence in their customers’ ability to detect and halt cryptomining attacks promptly, Google Cloud has introduced the Cryptomining Protection Program. This program offers financial protection up to $1 million to cover unauthorized Google Cloud compute expenses associated with undetected cryptomining attacks for Security Command Center Premium customers.
Detection Capabilities of the Security Command Center
Google Cloud’s financial protection assurance comes from their confidence in Security Command Center Premium’s specialized detection capabilities that are engineered into the Google Cloud infrastructure. This includes scanning virtual machine memory for malware without agents, which can slow performance and increase an organization’s attack surface.
Security Command Center can also detect compromised identities, which are a gateway for attackers to gain unauthorized access to cloud accounts and quickly deploy cryptomining malware. This full set of advanced detection capabilities can only be delivered by a product built into the cloud infrastructure, providing an edge against external security tools that rely on analysis of cloud logs and information gathered from APIs.
Details of the Cryptomining Protection Program
Google Cloud customers using Security Command Center Premium that follow the program terms and conditions, including Cryptomining Detection Best Practices, are eligible to participate in the program. More detailed information and eligibility criteria can be found in the Cryptomining Protection Program Overview.
Google Cloud’s Shared Fate Approach to Risk Management
Google Cloud’s shared fate model underscores their commitment to delivering effective security outcomes on their platform. By providing customers with potent tools to detect one of the most common and costly cloud threats, Google Cloud offers financial protection if their efforts prove unsuccessful.
Philip Bues, research manager for cloud security at IDC, praised Google Cloud’s initiative, stating that “Cryptomining attacks continue to be a serious security and financial issue for organizations who do not have the right preventative controls and threat detection capabilities in their cloud environments. Google Cloud is taking an important step by providing built-in threat detection of unauthorized cryptomining, backed by real financial protection available to Security Command Center Premium customers, if an attacker evades their detection defenses.”
How to Get Started with Security Command Center Premium
For those eager to protect their cloud environments, you can start today with Security Command Center Premium. To learn more about the Security Command Center Cryptomining Protection Program, read the Program Overview.
Conclusion
In a world where cryptomining attacks are a significant threat, Google Cloud’s Cryptomining Protection Program represents a breakthrough for enterprises. Its blend of advanced threat detection and substantial financial protection delivers a compelling package for businesses looking to bolster their cloud security. Stay ahead of the curve and fortify your digital defenses with Google Cloud.
