weerapat1003 - stock.adobe.com
Development and testing environments under attack
Perforce Software highlights channel opportunity to help customers with a growing problem that many are struggling to deal with
The channel is being urged to help users increase the security protecting testing and development environments as the number of cyber attacks on those areas increases.
The Delphix 2024 State of data compliance and security report has some sobering numbers for those hoping they can skimp on data protection across some parts of the business and still avoid becoming victim to cyber crime.
According to the report, from Perforce Software, areas of the business that are non-production environments, including development, testing and analytics, were coming under attack, causing increasing headaches for users that had failed to maintain consistent policies or identify tools to defend against breaches.
The firm found that 54% of customers had suffered a breach in a non-production environment, but the vast majority of users (86%) allowed exceptions because testing and development was treated differently.
David Wells, product lead of compliance products for Delphix by Perforce, said the headline findings underlined the need for partners to educate and increase protection across user environments.
“Anyone in the channel who is handling sensitive consumer or patient data, anywhere in the world, whether they are integrators or ISVs, should be very interested in this report, as it includes relevant findings on the current level of risk that exists in many organisations regarding the potential loss of this information,” he said.
“We hear all the time from customers that exceptions are given because it’s too complicated and time-consuming to achieve compliance without slowing down development or impacting quality.”
Data protection
As well as the obvious risks of leaving some back doors open to the corporate infrastructure, customers also expressed concerns that a failure to secure non-production environments would undermine their compliance positions with various data protection regulations.
The concern is that the situation will only get more complicated and risks will rise with the expansion in use of more artificial intelligence tools. The majority of those quizzed by Perforce revealed they believed there was a lack of solutions to help protect privacy in AI environments.
“AI is transforming industries, and data is at the heart of AI,” said Rod Cope, chief technology officer of Perforce Software. “When it comes to AI and data, it can be a double-edged sword. There’s a lot of excitement around the innovation possible in AI, but data in AI environments must be protected. The findings in the State of data compliance and security report underline the importance of complying with data privacy regulations in AI environments, too.”
Two-thirds of customers surveyed indicated they were actively looking for technologies that could help solve that problem, indicating that there was an opportunity for both vendors and their partners if they could meet that need.
Perforce acquired test data management specialist Delphix earlier this year to add more depth to its DevOps expertise.