IBM X-Force IRIS analyzed the most common types of cloud compromises we’ve seen over the past year. The most common initial infection vector was remote exploitation of cloud applications. Data theft is by far the top tactic we see attackers taking once they’ve breached cloud systems. Cloud systems often hold an unprecedented amount of valuable and sensitive data that can put both organizations and their customers in danger if breached. Threat actors are always evolving and augmenting their tactics, techniques, and procedures with new capabilities specifically to target cloud environments.”]
Source: https://www.darkreading.com/cloud/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind