Threat actors are taking advantage of inconsistent cloud security structures and “living in that uncertainty between the enterprise and the cloud,” Meyers said last week during a media briefing.
Cybercriminals are using the cloud to deploy tooling, such as Microsoft Azure run commands, inside enterprise targets, according to Meyers.
More than 4 in 5 cloud intrusions directly attributed to a threat actor last year were financially motivated, the report said.
Earlier this month, Proofpoint researchers warned about an ongoing Microsoft Azure account takeover campaign that has impacted more than 100 organizations. The financially-motivated threat actors behind these attacks are targeting individual employees, including executives.
