Managing risk and vulnerabilities within dynamic cloud environments isn’t easy. Traditional vulnerability management is ill-suited for some of the core challenges of cloud security. Traditional tools such as scanners often miss active threats that are outside their database or that represent a level of complexity beyond their capability. Breach and attack simulation (BAS) platforms are designed to work in cloud and hybrid cloud environments. Unlike traditional vulnerability management tools for the dynamism of the cloud, the cloud presents little difficulty to secure ephemeral objects.
Source: https://www.helpnetsecurity.com/2021/01/18/vulnerability-management-cloud-security/