Skip to content
Information Technology

Google Cloud Threat Horizons Report 2024 – new year, new cloud threat insights

Mandiant 3 mins read


Google Cloud has published its latest Threat Horizons Report, which provides intelligence-derived threat actor trends, expertise and recommendations to help inform cloud customer security strategies in 2024.

The Google Cloud Threat Horizons Report provides decision-makers with strategic intelligence about
threats to cloud enterprise users, along with cloud-specific research, based on intelligence-derived threat
actor trends and expertise from Google Cloud security leaders and practitioners. Most importantly, the report
delivers recommendations on mitigating these risks and improving cloud security posture from Google’s
intelligence and security teams, including Google Cloud’s Office of the CISO, Google’s Threat Analysis Group, Mandiant, and various Google Cloud product teams.

The report’s findings suggest that IT environments are facing an increase in threats, both in number and sophistication. Arguably the most notable highlighting however, is that issues specific to cloud providers were  often due to poor security hygiene or mis-configurations, rather than underlying vulnerabilities.

The full report can be read/downloaded here:

Summary of the report:

As the digital landscape evolves, so do the threats posed to cloud environments. 

Emerging Threats and Persistent Challenges:

The report underscores the persistence of credential abuse, cryptomining, ransomware, and data theft as top cloud security concerns in 2024. Threat actors are increasingly targeting cloud infrastructure, leveraging weak passwords and mis-configurations to gain unauthorised access. Cryptomining remains a lucrative endeavour for attackers, exploiting compromised cloud resources for financial gain. Additionally, ransomware attacks and data theft pose significant risks across all IT environments, necessitating robust data loss prevention strategies.


Addressing Evolving Tactics:

Threat actors are adapting their tactics, including manipulating and deleting security event logs to evade detection. Furthermore, espionage threat actors affiliated with the People's Republic of China are increasingly targeting cloud services amid widespread adoption globally. These evolving threats require organisations to prioritise security event logging and implement stringent access controls to safeguard sensitive data.


Preparing for Global Events:

High-profile global events in 2024 present attractive targets for threat actors engaged in malicious activities such as information operations and espionage. Weaknesses within cloud projects may be exploited to achieve malicious objectives. Thus, organisations must remain vigilant and proactively enhance their cloud security posture to mitigate risks associated with these events.


Strategies for Defence:

To counteract prevalent threats, organisations must prioritise strong security measures. Google Cloud offers various security features, including two-factor authentication (2FA), strong password policies, IAM policies, Cloud Audit Logs, and Security Command Centre. These tools empower organisations to monitor for suspicious activity, enforce access controls, and respond swiftly to security incidents.


Mitigating Ransomware and Data Theft:

Ransomware attacks and data theft incidents continue to target unprotected cloud storage services and mis-configured networks. Strengthening cloud asset management and data protection is imperative to mitigate these risks. Weak credentials, mis-configurations, application vulnerabilities, and third-party issues contribute to system compromises, emphasising the need for comprehensive security measures.


Real-World Incidents and Insights:

Recent incidents highlight the real-world consequences of inadequate cloud security practices. For instance, suspected ransomware actors breached Slovenia's largest power provider by exploiting unprotected cloud storage instances. Similarly, misconfigured servers during a data centre migration led to a ransomware attack on cloud-hosting firms, resulting in lost customer data.


Proactive Measures and Awareness:

Threat actors exploit vulnerabilities in cloud environments through sophisticated tactics such as probing weak storage bucket naming conventions. Organisations must prioritise proactive measures, including regular security assessments, employee training, and adherence to best practices to mitigate such risks effectively.



As cloud adoption continues to accelerate, ensuring robust security measures is paramount. The Google Cloud Threat Horizons Report provides valuable insights to inform actionable strategies for safeguarding cloud environments in 2024 and beyond. By implementing proactive security measures and staying abreast of emerging threats, organisations can enhance their resilience against evolving cyber threats.

More from this category

  • Information Technology, RetailOnline Retail
  • 29/02/2024
  • 11:24

HP Unveils Broadest Consumer Portfolio of AI-Enhanced Laptops: Your Personal AI Assistant in a Portable Package

Today, HP has announced the release of itsnewest Envy and Pavilion laptop PCs – now the broadest consumer portfolio of AI-enhanced laptops. These devices…

  • Contains:
  • Business Company News, Information Technology
  • 29/02/2024
  • 04:53
GetApp Australia

Majority of companies think AI will play a crucial role in critical business decisions in the future, survey reveals

AUSTRALIA – 29th February 2024 A recent survey by software recommendation site GetApp reveals that nearly two-thirds (63%) of professionals in Australia view AI…

  • Contains:
  • Information Technology
  • 29/02/2024
  • 01:07

Smart Communications Named a Leader in 2024 SPARK Matrix(TM) for Customer Communication Management by Quadrant Knowledge Solutions

Evaluation highlights the CCM Leader’s robust capabilities and strong market presenceLONDON and NEW YORK, Feb. 28, 2024 (GLOBE NEWSWIRE) -- Smart Communications™, a leading technology company focused on helping businesses engage in more meaningful customer conversations, today announced it was recognized as a technology leader by analyst firm, Quadrant Knowledge Solutions in its new report, SPARK Matrix™ for Customer Communication Management (CCM.)Implementing a CCM platform offers significant business benefits by optimizing operational workflows and delivering a more tailored customer experience. This report provides a detailed analysis of the global market, emerging technology, market trends and vendor evaluations.According to Saurabh Raj, analyst…

Media Outreach made fast, easy, simple.

Feature your press release on Medianet's News Hub every time you distribute with Medianet. Pay per release or save with a subscription.