Cloud Security - The New Challenge

Many clients use a combination of traditional perimeter security technologies like Firewalls and default public cloud security settings like ACL’s when designing and deploying applications. The focus is normally on public-facing web assets. This increasing sophistication of attacks means that these methods are no longer effective, and a new approach is required. The sheer scale IPv6 makes blacklisting of IP’s totally ineffective.

In summary:  Old approaches aren’t as effective anymore, start with “Deny All” and whitelist only required services.

Look at whitelisting tools like Airlock and Applocker from Microsoft.