DarkReading.com reported that “This growing reliance on the cloud is bringing new security challenges to an already complex problem, experts say. That’s because as enterprise IT stakeholders’ understanding of and confidence in implementing the cloud has improved, so has the sophistication of threat actors that want to leverage its complexity for their own malicious intent.”  The February 9, 2023 article entitled “7 Critical Cloud Threats Facing the Enterprise in 2023” (https://www.darkreading.com/cloud/7-critical-cloud-threats-facing-enterprise-2023) included these comments from Gartner:

Securing the cloud has been an unwieldy and daunting task since the beginning: The idea of using an enterprise architecture built on delivering computing services over the internet naturally represents a unique threat surface. But cloud computing is rapidly becoming a ubiquitous part of the IT landscape, with Gartner estimating that more than 95% of new digital workloads will be deployed on cloud-native platforms by 2025 — a dramatic increase from 30% in 2021.

Here are the 7 Critical Cloud Threats:

  1. Third-Party Software & Supply Chain Risks
  2. Cloud Ransomware
  3. Advanced Persistent Threats (APTs)
  4. Multicloud Sprawl
  5. Shadow Data
  6. Overpermissioning in the Cloud
  7. Human Error, Misconfigurations, & Data Misuse

Anyone surprised? I doubt it!

First posted at https://www.vogelitlaw.com/blog/critical-cloud-threats-in-2023