AI Snips
Chapters
Transcript
Episode notes
Observed Cloud Threats
- Focus on actual attacker behavior in the cloud, not just hypothetical threat models.
- Observed cloud threats primarily involve financially motivated attackers.
Cloud vs. On-Premise Threats
- Cloud threats share high-level tactics with on-premise threats (e.g., initial access, lateral movement).
- Techniques and end goals often differ, with web app exploits and financial gain common in the cloud.
Cloud Threat Ranking
- Some threats, like cryptomining, are more significant in the cloud due to its scalability.
- Attackers exploit inherent cloud properties like scalability, API-driven nature, and public accessibility.