Google Cloud accidentally deletes a financial institution account due to ‘unprecedented misconfiguration’ (www.theguardian.com)
from Moonrise2473@feddit.it to technology@lemmy.ml on 11 May 2024 05:50
https://feddit.it/post/7752642

A week of downtime and all the servers were recovered only because the customer had a proper disaster recovery protocol and held backups somewhere else, otherwise Google deleted the backups too

Google cloud ceo says “it won’t happen anymore”, it’s insane that there’s the possibility of “instant delete everything”

#technology

threaded - newest

autotldr@lemmings.world on 11 May 2024 05:55 next collapse

This is the best summary I could come up with:


More than half a million UniSuper fund members went a week with no access to their superannuation accounts after a “one-of-a-kind” Google Cloud “misconfiguration” led to the financial services provider’s private cloud account being deleted, Google and UniSuper have revealed.

Services began being restored for UniSuper customers on Thursday, more than a week after the system went offline.

Investment account balances would reflect last week’s figures and UniSuper said those would be updated as quickly as possible.

In an extraordinary joint statement from Chun and the global CEO for Google Cloud, Thomas Kurian, the pair apologised to members for the outage, and said it had been “extremely frustrating and disappointing”.

“These backups have minimised data loss, and significantly improved the ability of UniSuper and Google Cloud to complete the restoration,” the pair said.

“Restoring UniSuper’s Private Cloud instance has called for an incredible amount of focus, effort, and partnership between our teams to enable an extensive recovery of all the core systems.


The original article contains 412 words, the summary contains 162 words. Saved 61%. I’m a bot and I’m open source!

GolfNovemberUniform@lemmy.ml on 11 May 2024 06:01 next collapse

Tbh I do not understand why would a company keep their data on a service like Google Cloud

Vendetta9076@sh.itjust.works on 11 May 2024 06:39 next collapse

My company used to do this. Its cause we were incredibly stupid.

Chozo@fedia.io on 11 May 2024 06:56 next collapse

Money. It's a lot cheaper to let somebody else maintain your systems than to pay somebody to create and maintain your own, directly.

Aurenkin@sh.itjust.works on 11 May 2024 07:04 next collapse

Flexibility is a huge one too. Much easier to upscale / downscale.

GolfNovemberUniform@lemmy.ml on 11 May 2024 07:22 next collapse

No I meant that Google Cloud is very invasive. Why not to use a more ethical provider?

allywilson@lemmy.ml on 11 May 2024 08:19 collapse

Why do you think it’s invasive? How do you quantify which providers are less invasive?

GolfNovemberUniform@lemmy.ml on 11 May 2024 08:22 collapse

Google is one of the most privacy invasive companies in the world. And judging by encryption standards, terms of service and privacy policies

settoloki@lemmy.one on 11 May 2024 09:02 next collapse

Are you sure you’ve not just read bad stuff without verification on the internet and feel the need to chime in on something you don’t fully understand?

GolfNovemberUniform@lemmy.ml on 11 May 2024 09:15 collapse

Yes. I read Google’s policies many times.

settoloki@lemmy.one on 11 May 2024 09:55 collapse

Me too as a programmer that uses Google cloud to store government information. Which bit of the policy says they are going to access your data, shouldn’t take you long to link it to me if you read them as much as you say. Unless what you’re actually doing is spreading misinformation and bullshit.

ReversalHatchery@beehaw.org on 11 May 2024 10:03 collapse

I’m not the one who you were responding to, but considering google’s history, I don’t believe anything they claim, because they have lied so many times in the past, and because every “privacy guarantee” they provide is practically unprovable. It’s nothing more than wishful thinking to think that google does nothing with government data stored with them, with google classroom data of millions of children, and others. They have shown that they can’t be trusted.

pupbiru@aussie.zone on 11 May 2024 10:26 next collapse

b2b and audited security standards are a whole different thing - you deal with finance and health you’ve gotta prove to a 3rd party over and over that you have controls and technology in place to make sure you aren’t lying

this isn’t consumer BS

settoloki@lemmy.one on 11 May 2024 10:38 next collapse

If they lied about this and are accessing very confidential information I think my company would sue the giblets off Google.

You need to remember we are talking about Google Cloud, the enterprise services they offer and not Gmail and search engines.

ReversalHatchery@beehaw.org on 13 May 2024 11:16 collapse

I only have one question: how will your company find out?

settoloki@lemmy.one on 13 May 2024 12:19 collapse

Same way companies know they’ve been hacked. I’m making the assumption you’re non technical, given the question. But there are many ways such as access logs, server monitoring etc

ReversalHatchery@beehaw.org on 14 May 2024 11:14 collapse

But there are many ways such as access logs, server monitoring etc

Which are all in the control of the company running the servers. If we trust the company, we can trust them giving honest information on these, but if we don’t trust the company… they could just redact logs or even straight out fake them

settoloki@lemmy.one on 14 May 2024 11:21 collapse

I think you live in a fantasy world fella. Also server monitoring isn’t done by Google, it’s don’t by another 3rd party company.

GolfNovemberUniform@lemmy.ml on 11 May 2024 11:04 collapse

This. Even if by some miracle Google isn’t accessing everything on corporate cloud, it is an evil company and the policy can change. It’s a very untrustworthy and unreliable base for a business. And I’m not even talking about the fact that businesses that pay for the cloud are financially supporting Google

pupbiru@aussie.zone on 11 May 2024 09:14 collapse

and you know the security standards that are achievable on google cloud entirely negate your point right? their cloud offering is a totally different beast

[deleted] on 11 May 2024 07:50 next collapse

.

nehal3m@sh.itjust.works on 11 May 2024 11:19 next collapse

Except for the larger companies you still need a bunch of trained experts in house to manage everything.

homesweethomeMrL@lemmy.world on 11 May 2024 16:41 collapse

Yes, and they’re the company’s resources so they theoretically do what’s best for the company as opposed to hoping Google or (godforbid Microsoft) does it.

The money gets paid either way, and if you have good people it’s often the right call to keep it in house but inevitably somebody read a business book last year and wants to layoff all the IT people and let Google handle it “for savings”. Later directors are amazed at how much money they’re spending just to host and use the data they used to have in-house because they don’t own anything anymore.

There are still benefits - cloud DevOps tools are usually pretty slick, and unless your company has built a bunch of those already or is good about doing it, it might still be worth it in terms of being able to change quickly. But it’s still a version of the age old IT maxim to never own or build it yourself when you can pay someone a huge subscription and then sue them if you have to. I don’t like it, but it’s pretty much iron in the executive suite.

As a result, IT departments or companies spend much more than half of their time - totalling years or decades - moving from whatever they were using to whatever is supposed to be better. Almost all of that effort is barely break-even if not wasted. That’s just the nature of the beast.

Tryptaminev@lemm.ee on 11 May 2024 11:41 next collapse

If you are a small company then yes. But i would argue that for larger companies this doesn’t hold true. If you have 200 employees you’ll need an IT department either way. You need IT expertise either way. So having some people who know how to plan, implement and maintain physical hardware makes sense too.

There is a breaking point between economics of scale and the added efforts to coordinate between your company and the service provider plus paying that service providers overhead and profits.

matti@sopuli.xyz on 11 May 2024 17:26 collapse

If coordinating with service providers is hard for a firm, I would argue the cost effective answer isn’t “let’s do all this in house”. Many big finance firms fall in this trap of thinking it’s cheaper to build v buy, and that’s how you get everyone building their own worse versions of everything. Whether your firm is good at the markets or kitchens or travel bookings, thinking you can efficiently in-source tech is a huge fallacy.

Tryptaminev@lemm.ee on 11 May 2024 18:53 collapse

it is not about it being hard. It simply creates effort to coordinate. And this effort needs to be considered. If you do things externally that means there is two PMs to pay, you need QMs on both sides, you need two legal/contract teams, you need to pay someone in procurement and someone in sales…

I agree with you that doing software inhouse when there is good options on the market is usually not a good idea. But for infrastructure i don’t see there to be as much of an efficiency loss. Especially as you very much need experts on how to set things up in a cloud environment and you better look carefully at how many resources you need to not overpay huge amounts.

ripcord@lemmy.world on 12 May 2024 04:51 next collapse

It very frequently is not.

PowerCrazy@lemmy.ml on 12 May 2024 05:34 collapse

It’s absolutely not. If you are at any kind of scale whatsoever, your yearly spend will be a minimum of 2x at a cloud provider rather then creating and operating the same system locally including all the employees, contracts, etc.

KarnaSubarna@lemmy.ml on 11 May 2024 07:42 next collapse

Money and Time – It’s rather easier/cheaper for Organizations nowadays to outsource a part of infra to Cloud service providers.

GolfNovemberUniform@lemmy.ml on 11 May 2024 07:51 collapse

I meant Google Cloud, not cloud outsourcing itself

RegalPotoo@lemmy.world on 11 May 2024 08:04 next collapse

Because accountants mostly.

For large businesses, you essentially have two ways to spend money:

  • OPEX: “operational expenditure” - this is money that you send on an ongoing basis, things like rent, wages, the 3rd party cleaning company, cloud services etc. The expectation is that when you use OPEX, the money disappears off the books and you don’t get a tangible thing back in return. Most departments will have an OPEX budget to spend for the year.
  • CAPEX: “capital expenditure” - buying physical stuff, things like buildings, stock, machinery and servers. When you buy a physical thing, it gets listed as an asset on the company accounts, usually being “worth” whatever you paid for it. The problem is that things tend to lose value over time (with the exception of property), so when you buy a thing the accountants will want to know a depreciation rate - how much value it will lose per year. For computer equipment, this is typically ~20%, being “worthless” in 5 years. Departments typically don’t have a big CAPEX budget, and big purchases typically need to be approved by the company board.

This leaves companies in a slightly odd spot where from an accounting standpoint, it might look better on the books to spend $3 million/year on cloud stuff than $10 million every 5 years on servers

TCB13@lemmy.world on 11 May 2024 09:32 next collapse

Excellent explanation, however, technically it does not constitute an “odd spot.” Rather, it represents a “100% acceptable and evident position” as it brings benefits to all stakeholders, from accounting to the CEO. Moreover, it is noteworthy that investing in services or leasing arrangements increases expenditure, resulting in reduced tax liabilities due to lower reported profits. Compounding this, the prevailing high turnover rate among CEOs diminishes incentives for making significant long-term investments.

In certain instances, there is also plain corruption. This occurs when a supplier offering services such as computer and server leasing or software, as well as company car rentals, is owned by a friend or family member of a C-level executive.

cheeseandrice@lemm.ee on 11 May 2024 11:57 collapse

Been around, have you?

TCB13@lemmy.world on 11 May 2024 15:29 collapse

Some might say that.

homesweethomeMrL@lemmy.world on 11 May 2024 16:30 collapse

This guy corporates

kcuf@lemmy.world on 11 May 2024 23:37 collapse

I read OPs comment as being a question about using a company with a reputation like Google rather than using a cloud service, but I could be wrong.

Kit@lemmy.blahaj.zone on 11 May 2024 10:36 collapse

G Suite is a legitimate option for small-medium businesses. It’s seen as the cheaper, simpler option versus Azure. I usually recommend it for nonprofits as they have a decent free option for 501c3 orgs.

harry315@feddit.de on 11 May 2024 06:50 next collapse

Remember people: The cloud is just someone else’s computer.

dan1101@lemm.ee on 11 May 2024 12:08 next collapse

Yeah there’s that, and the fact that you have no control over how much the bill will be each renewal period. Those two things kept me off the cloud for anything important.

cmnybo@discuss.tchncs.de on 12 May 2024 05:07 collapse

Most cloud providers have a way to set limits. Make sure you learn how to set appropriate limits to avoid unexpected bills.

IronKrill@lemmy.ca on 12 May 2024 07:04 collapse

The limits don’t matter if the provider raises their price next month.

Natanael@slrpnk.net on 12 May 2024 15:20 collapse

And some functions don’t support hard limits, you’d have to set up a script monitoring load and literally take down your service if you get near the max

medium.com/…/how-an-empty-s3-bucket-can-make-your…

delirious_owl@discuss.online on 11 May 2024 15:30 next collapse

Unless its a self-hosted cloud. Then its your own computers

imnotfromkaliningrad@lemmy.ml on 11 May 2024 17:39 collapse

thats why i am trying to explain to my family since forever. their answer always amounts to something like “it would be illegal for them to look at my data!” like those companies would care. .

umbrella@lemmy.ml on 12 May 2024 11:38 collapse

in many cases “looking at my data!” is in their TOS

MossyFeathers@pawb.social on 11 May 2024 06:53 next collapse

They said the outage was caused by a misconfiguration that resulted in UniSuper’s cloud account being deleted, something that had never happened to Google Cloud before.

Bullshit. I’ve heard of people having their Google accounts randomly banned or even deleted before. Remember when the Terraria devs cancelled the Stadia port of Terraria because Google randomly banned their account and then took weeks to acknowledge it? The only reason why Google responded so quickly to this is because the super fund manages over $100b and could sue the absolute fuck out of Google.

Pechente@feddit.de on 11 May 2024 09:12 next collapse

This happened to me years ago. Suddenly got a random community guidelines violation on YouTube for a 3 second VFX shot that was not pornographic or violent and that I owned all the rights to. After that my whole Google account was locked down. I never found out what triggered this response and I could never resolve the issue with them since I only ever got automated responses. Fuck Google.

Bitrot@lemmy.sdf.org on 11 May 2024 15:56 collapse

This sort of story is what made me switch away from Google Fi and ultimately mostly degoogling. Privacy was a big part later on, but initially it was realizing that a YouTube comment or a file in my drive could get my cell service turned off.

[deleted] on 11 May 2024 12:34 next collapse

.

umbrella@lemmy.ml on 12 May 2024 11:40 collapse

one of my accounts was locked for no reason once. i apparently did well to not trust important data to them anymore.

ID411@lemmy.dbzer0.com on 11 May 2024 06:55 next collapse

Only a week.

ksynwa@lemmygrad.ml on 11 May 2024 07:03 next collapse

Can I see this unprecedented misconfiguration?

Google: No

[deleted] on 11 May 2024 07:47 next collapse

.

breakingcups@lemmy.world on 11 May 2024 06:03 next collapse

Welp, this is the most left field KilledByGoogle entry yet.

poo@lemmy.world on 11 May 2024 08:22 next collapse

And this is why I back up Google Drive locally every night.

iAvicenna@lemmy.world on 11 May 2024 11:32 next collapse

that is ok they can always make more money with shady ad practices

yogthos@lemmy.ml on 11 May 2024 12:49 next collapse

<img alt="" src="https://lemmy.ml/pictrs/image/a8b9c68b-5fe5-4551-a613-2d0d7ba5e42f.png">

homesweethomeMrL@lemmy.world on 11 May 2024 16:44 next collapse

While UniSuper normally has duplication in place in two geographies, to ensure that if one service goes down or is lost then it can be easily restored, because the fund’s cloud subscription was deleted, it caused the deletion across both geographies.

TFW your BCDR gets disastered.

Also “massive misconfiguration” is the “spontaneous disassembly” of cloud computing. i’m sure it’s mutiple systems are misconfigured causing chaos but it sounds hilarious.

TCB13@lemmy.world on 11 May 2024 18:45 next collapse

“This is an isolated, ‘one-of-a-kind occurrence’ that has never before occurred with any of Google Cloud’s clients globally. This should not have happened.

I don’t believe this is what that rare, what I believe is that this was the fist time it happened to a company with enough exposure to actually have in impact and reach the media.

Either way Google’s image won’t ever recover from this and they just lost what small credibility they had on the cloud space and won’t be even considered again by any institution in the financial market - you know the people with the big money - and there’s no coming back from this.

TeoTwawki@lemmy.world on 12 May 2024 07:34 collapse

It has 100% happened before and just never been admitted to. I have both 1st hand dealt with the aftermath and heard from other smaller companies about it. I work at medium sized MSP and disaster recovery is in my wheelhouse.

TCB13@lemmy.world on 12 May 2024 13:30 collapse

Thank you for confirming my suspicions. :)

heluecht@pirati.ca on 12 May 2024 00:04 next collapse

@Moonrise2473 Regardless of one thinks about "cloud" solutions, this is a good example, why you always should have an offsite backup.

Hirom@beehaw.org on 12 May 2024 07:22 collapse

They had backups at multiple locations, and lost data at multiple (Google Cloud) locations because of the account deletion.

They restored from backups stored at another provider. It may have been more devastating if they relied exclusively on google for backups. So having an “offsite backup” isn’t enough in some cases, that offsite location need to be at a different provider.

Tangentism@lemmy.ml on 12 May 2024 09:08 next collapse

It may have been more devastating if they relied exclusively on google for backups.

Which is why having any data, despite the number of backups, on a cloud provider shouldn’t be seen as off-site.

Only when it is truly outside their ecosphere and cannot be touched by them should it be viewed as such.

If that company didn’t have such resilience built into their backup plan, they would be toast with a derisory amount of compensation from Google.

Hirom@beehaw.org on 12 May 2024 17:39 collapse

Having a backup at a cloud provider is fine, as long as there is at least one other backup that isn’t with this provider.

Cloud provider seems to do a good job protecting against hardware failure, but can do poorly with arbitrary account bans, and sometimes have mishaps due to configuration problems.

Whereas a DIY backup solution is often more subject to hardware problems (disk failure, fire, flooding, theft, …), but there’s no risk of account problem.

A mix is fine to protect against different kind of issues.

Tangentism@lemmy.ml on 13 May 2024 07:26 collapse

as long as there is at least one other backup that isn’t with this provider.

Which is exactly what I was saying.

Any services used with a cloud provider should be treated as 1 entity, no matter how many geo-locations they claim your data is backed up to because they are a single point from which all those can be deleted.

When I was last involved in a companies backups, we had a fire safe in the basement, we had an off-site location with another fire safe & third copies would go off to another company that provided a backup storage solution so for all backups to be deleted, someone had to go right out of their way to do so. Not just a simple deletion of our account & all backups are wiped.

That company had the foresight to do something similar & it’s saved them. [edited - was on the tube when I wrote this and didnt see the autocorrect had put ‘comment’, not ‘company’]

Hirom@beehaw.org on 13 May 2024 10:37 collapse

Okay, I misinterpreted your comment.

Tangentism@lemmy.ml on 13 May 2024 19:04 collapse

No, it’s all good. We’re on the same page about disaster recovery!

heluecht@pirati.ca on 12 May 2024 11:42 collapse

@Hirom With "offsite" I mean either a different cloud provider or own hardware (if you hold your regular data at some cloud provider, like in this case).

Hirom@beehaw.org on 12 May 2024 17:31 collapse

That would indeed be a good backup strategy, but better be specific. “Offsite” may be interpreted in different ways.

Simon@lemmy.dbzer0.com on 12 May 2024 15:05 collapse

Just an FYI in case you don’t follow Cloud news but Google has deleted customers accounts on multiple occasions and has been for literal years. This time they just did it to someone large enough to make the news. I work in SRE and no longer recommend GCP to anyone.