Google Cloud Report Highlights Persistent Cloud Security Risks
SC Media, Friday, February 7th, 2025
A recent Google Cloud report has revealed that 46% of observed security alerts stemmed from overprivileged service accounts, according to Security Boulevard.
Google Cloud's Threat Horizons report found weak or absent passwords leading as the access method most commonly exploited by threat actors, accounting for 46% of initial breaches. Misconfiguration came next at 36%, followed by compromised user interfaces or application programming interfaces at 17%.
Once inside a cloud environment, attackers moved laterally in 62% of cases, often searching for insecure private keys and manipulating access tokens. Additionally, 10% of reported incidents involved access to service account keys from unexpected locations.