Dreadful. Wake up call for all those BCP and risk professionals! No matter how mature you think your CSP process controls are such failures can still happen in some other form or shape in the future. Lesson is to always keep backup images for your crown jewels external to your provider and conduct DR exercises.
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
The move to the cloud creates new risks to resilience, with the main providers now being globally systemically important. That's not to say that in many ways, cloud based systems provide greater assurance of availablity, but if something were to go wrong at a major service provider, the potential impact could be colossal.
Impacting multiple firms across various sectors, the effect on people's daily lives could be horrendous. Not being able to buy food because the supermarket system is down, or the logistics company couldn't deliver. Not being able to use debit or credit cards. Not being able to transact on a home move. Not being able to file statutory documentation. Firms being unable to pay staff. The above assumes that utilities and government services are suitably robust but if not, the impact could be significantly greater.
Firms, trade bodies, regulators, governments need to act to ensure that people are protected from such failures. The firm in this case had resilience by using multiple cloud services but how common is this?
I accept and agree that a significant failure is highly unlikely but it's something that should be considered whenever cloud based technology supports time critical services.
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
So not focussing on the recovery capabilities of google for a second, its worth noting one’s own cyber resilience and what you are doing to ensure you can be resilient and survive cyber threats.
Know your threats
Focus
Get the right answers
Identify detect protect respond and govern well
#ciso#threatandrisk#infosec#advisory
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
I have never seen a stronger argument for infrastructure as code.
DR plan:
open new account (5min)
restore offsite backup (30min)
change account number (2min)
terraform apply (10min)
Outage duration 47min
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
Unacceptable failure for financial institution, but this is by no means the first f_up of big cloud vendor
Cloud can erode institutional craftsmanship and responsibility for your tech garden and companies ability to be innovative slowly evaporates.
Moral of the story:
- cloud risk/responsibility shift is asymmetric - it is1% we-are-sorry issue for Google, but is 100% damage for fund reputation
- do not trust your money to this pension fund, they obviously waste it in the most spectacular ways. They already forgot what your trust costs
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
So many questions… but truly it’s an issue which can be fixed by looking at prior financial statements and validating pension entries. It would be very difficult but you can capture the remaining months by calculating pension payments across all payroll this would act as the benchmark to tie out to. #accountinggames#CPA#debitsandcredits
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
MIT SCMr class 2024 | Supply Chain Management | Machine Learning | Metals | Software Implementation | Database Developer | Software Developer | Father and Husband | Great Teammate | and a lot more
While this is clearly a technical issue, it can serve as a reminder: IT infrastructure is already a major part of the supply chain. It requires the same resilience approach that companies use for any facility or part of supply chain, or perhaps an even more complicated approach, considering the additional energy and security risks involved.
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
This is a great reminder of why resilience planning is a must, and why relying on only one provider for business critical functions is not an acceptable practice. However big and relaibale the provider is, mistakes, malfunctions and other events are always on the table.
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
Data backup in multiple storage systems is important now a days !!
As data is integral part of current world, We should have different replicas of data sets in cloud servers………………..
But question is how to bear the cost 🤔💭
#cloud#storage#data#systemdesign#analytics
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq
To the importance of having proper disaster recovery plans, tested annually while ensuring your data backups are correctly managed & protected.
Don't think about the person who pushed the wrong button, think about the customers' data availability and fast restore.
Once data is fully restored, what went wrong? well, of course, it's important so that it doesn't happen again, but no matter what happened, resilience is more important.
No.1 Tech Voice to Follow & Influencer on LinkedIn|Award Winning Author|AI-IoT-Blockchain-Cybersecurity|Speaker 53k+
Google recently made a significant error by accidentally erasing the private #Google Cloud account of UniSuper, a $125 billion Australian pension fund. - As a result, more than half a million UniSuper fund members were unable to access their accounts for about a week, according to a report by *The Guardian* last week. Fortunately, UniSuper had a backup account with another cloud provider, and service was restored on May 2. Link: https://lnkd.in/gGU8bPdq