Unit 42 at Paloalto Networks has published a security report detailing the threats made worse by the extended use of the Cloud.

The research consisted of analyzing "680,000+ identities across 18,000 cloud accounts from 200 different organizations to understand their configuration and usage patterns."

The findings don't look good with the inadequate identity and access management (IAM) policy and controls, resulting in security issues. The report said, "Nearly all organizations we analyzed lack the proper IAM management policy controls to remain secure. "

It identified IAM as the opportunity for bad actors to take advantage, with four key points.

Password reuse: 44% of organizations allow IAM password reuse.

Weak passwords (<14 characters): 53% of cloud accounts allow weak password usage.

Cloud identities are too permissive: 99% of cloud users, roles, services, and resources were granted excessive permissions which were ultimately left unused (we consider permissions excessive when they go unused for 60 days or more).

Built-in cloud service provider (CSP) policies are not managed properly by users: CSP-managed policies are granted 2.5 times more permissions than customer-managed policies, and most cloud users prefer to use built-in policies. Users are able to reduce the permissions given, but often don’t.

It's worth a read, imho.

[unit42.paloaltonetworks.com...]