Crowdstrike recently published its 2023 Global Threat Report, which uncovers themes, trends, and events pertaining to the state of cybersecurity.
Among the most notable findings is a 95% increase in cloud exploitation and a significant rise in cloud-conscious tactics, techniques, and procedures (TTPs).
According to the report, in 2022, cloud exploitation cases increased by 95% YoY, and cases involving cloud-conscious threat actors nearly tripled compared to the previous year.
- The researchers found that cloud account discovery has become a new hacking tactic replacing cloud infrastructure discovery.
- Threat actors were found to have used valid higher-level privileged accounts to conduct attacks.
- In 2022, more threat actors engaged in account access removal, data destruction, resource deletion, and service blocking to achieve their goals.
- Microsoft vulnerabilities have also been identified as a major concern. The report highlights that Microsoft issued more than 900 patches in 2022 alone.
