Summary: The recent Palo Alto Networks Unit 42 Cloud Threat Report highlights alarming vulnerabilities in cloud storage, with sensitive data found in 66% of cases, posing risks for ransomware attacks. Security experts stress the importance of understanding cloud security controls and implementing robust measures to protect against exploitation. Recommendations include proper management of encryption methods, enabling backups, and balancing security with cost through data lifecycle policies.
Affected: Organizations using cloud storage services
Keypoints :
- 66% of cloud storage buckets contain sensitive data vulnerable to ransomware.
- Attacks can exploit cloud providers’ storage security controls and default settings.
- Organizations should understand the limitations of cloud security services.
- Block unsupported encryption methods to prevent misuse by attackers.
- Enable backups, object versioning, and object locking for better data recovery chances.
- Implement data lifecycle policies to balance security costs effectively.
To learn more, watch Brandon’s webcast, “The Cloud Won’t Save You from Ransomware: Here’s What Will”, by visiting this link. Interested in additional tactics for mitigating attacks in the Big 3 cloud providers? Check out Brandon’s course, SEC510: Cloud Security Controls and Mitigations at SANS 2025 in Orlando or Live Online this April. This course is also available with Brandon later in the year in Baltimore, MD in June or Washington, DC in July.
Source: https://thehackernews.com/2025/03/sans-institute-warns-of-novel-cloud.html