There is an industry-wide cloud permissions gap crisis, a CloudKnox Security report reveals. The report finds that attackers can leverage over-privileged identities to traverse laterally, elevate permissions and cause extensive data exfiltration. More than 40% of AWS roles were reported as inactive or over permissioned, putting these organizations at risk of a costly breach should a bad actor breach one of these roles. 90% of enterprises using vSphere have misconfigurations that can lead to critical level one failures.
Source: https://www.helpnetsecurity.com/2021/04/19/improper-cloud-iam/