Cloud CVEs have surged 200% in a year, according to a new report from IBM. The report reveals that there were 632 new cloud-related vulnerabilities reported between June 2022 and June 2023, marking a 194% increase from the previous year. The top initial access vector for cloud compromise during this time was the use of valid credentials by threat actors. Over 40% of the CVEs discovered in the reporting period could allow attackers to obtain information or gain access. Poor security practices, such as storing plaintext credentials on user endpoints, are contributing to the problem. Europe accounted for 64% of cloud-based attacks, followed by North America at 29%. #CloudSecurity #CVEs #CyberThreats

https://www.infosecurity-magazine.com/news/cloud-cves-surge-200-in-a-year/