zdnet[.]com/article/two-thirds-of-cloud-attacks-could-be-stopped-by-checking-configurations-research-finds/
TO put it bluntly, according to IBM research, biz IT staff are largely overworked & under budgeted, lazy, or inept, because 2/3 of cloud attacks could have likely been easily prevented by simply following best practice rules.
On Wednesday, IBM Security X-Force published its latest Cloud Security Threat Landscape report, spanning Q2 2020 through Q2 2021.According to the research, two out of three breached cloud environments observed by the tech giant "would likely have been prevented by more robust hardening of systems, such as properly implementing security policies and patching systems."
While sampling scanned cloud environments, in every case of a penetration test performed by X-Force Red, the team also found issues with either credentials or policies.