Cloud-conscious cyberattacks skyrocketed from 2021 to 2022: Observed cloud exploitation cases grew by 95% and cases involving adversaries targeting cloud environments have nearly tripled, increasing 288% year-over-year.
Defending cloud environments from this activity requires knowledge of what threat actors are doing — how they’re breaking in and moving laterally, which resources they target and the steps they take to evade detection.
The CrowdStrike 2023 Cloud Risk Report puts a spotlight on adversaries targeting enterprise cloud environments and the tactics, techniques and procedures (TTPs) they employ. It uncovers key trends in adversary activity, shares real-world stories of recent attacks on cloud environments, reveals critical oversights that are leaving organizations vulnerable, and offers guidance for defending against increasingly cloud-conscious adversaries.