Cloud
"In 2024, new and unattributed cloud intrusions increased 26% compared to 2023, indicating more threat actors seek to exploit cloud services. CrowdStrike observed more intrusions in which attackers gained initial access via valid accounts, leveraged cloud environment management tools for lateral movement, and abused cloud provider command line tools."
- Crowdstrike 2025 Global Threat Report
Cloud environments are often overlooked when it comes to security, and are often the source of many vulnerabilities. This can be down to assumptions that these services come 'secure by default', this is not necessarily the case. Complex technology stacks and environments can contribute to misconfigurations and vulnerabilities, and often require a different approach to testing.
Many cloud environments are configured to their default settings, which are not necessarily the most secure and may allow access to and from unintended or insecure locations or resources. Misconfigurations in this area may allow attackers to gain footholds within internal environments and provide the basis for subsequent lateral movement to more sensitive systems or data.
We perform a mix of manual and automated testing, where a security expert will review your cloud environment, and identify any potential vulnerabilities or attack paths.
- Microservices, serverless, lambda, Docker, Kubernetes, Terraform, Ansible.... the list goes on and isn't in any danger of getting shorter.
- Container and cloud first technologies are becoming more and more popular, and are often used to deploy applications in public cloud environments such as AWS, Azure, or GCP.
- These are complex and powerful technologies, but they can also introduce new vulnerabilities.
- Secure configuration of these assets requires new and unique skills based off of tried and tested security principles.
- IAMs, security groups, network access controls, and other cloud configuration. There is a LOT going in even moderately small cloud environments.
- Many of these are configured to their default settings, which are not necessarily the most secure.
- Oversights within these configurations can lead to a number of vulnerabilities, including exposure of sensitive commercial or personal data, and the ability to compromise the cloud environment.
Resources
- Crowdstrike 2025 Global Threat Report
- National Cyber Security Centre (NCSC) Cyber Security Design Principles
- Microsoft Azure Security Best Practices
- AWS Security Best Practices
Our Mission
To provide information security services, affordably and at scale, through innovative use of software development, automation and AI driven solutions.