Skip to content
Information Technology

Google Cloud Threat Horizons Report 2024 – new year, new cloud threat insights

Mandiant 3 mins read

 

Google Cloud has published its latest Threat Horizons Report, which provides intelligence-derived threat actor trends, expertise and recommendations to help inform cloud customer security strategies in 2024.

The Google Cloud Threat Horizons Report provides decision-makers with strategic intelligence about
threats to cloud enterprise users, along with cloud-specific research, based on intelligence-derived threat
actor trends and expertise from Google Cloud security leaders and practitioners. Most importantly, the report
delivers recommendations on mitigating these risks and improving cloud security posture from Google’s
intelligence and security teams, including Google Cloud’s Office of the CISO, Google’s Threat Analysis Group, Mandiant, and various Google Cloud product teams.

The report’s findings suggest that IT environments are facing an increase in threats, both in number and sophistication. Arguably the most notable highlighting however, is that issues specific to cloud providers were  often due to poor security hygiene or mis-configurations, rather than underlying vulnerabilities.

The full report can be read/downloaded here: https://services.google.com/fh/files/misc/threat_horizons_report_h12024.pdf

Summary of the report:

As the digital landscape evolves, so do the threats posed to cloud environments. 

Emerging Threats and Persistent Challenges:

The report underscores the persistence of credential abuse, cryptomining, ransomware, and data theft as top cloud security concerns in 2024. Threat actors are increasingly targeting cloud infrastructure, leveraging weak passwords and mis-configurations to gain unauthorised access. Cryptomining remains a lucrative endeavour for attackers, exploiting compromised cloud resources for financial gain. Additionally, ransomware attacks and data theft pose significant risks across all IT environments, necessitating robust data loss prevention strategies.

 

Addressing Evolving Tactics:

Threat actors are adapting their tactics, including manipulating and deleting security event logs to evade detection. Furthermore, espionage threat actors affiliated with the People's Republic of China are increasingly targeting cloud services amid widespread adoption globally. These evolving threats require organisations to prioritise security event logging and implement stringent access controls to safeguard sensitive data.

 

Preparing for Global Events:

High-profile global events in 2024 present attractive targets for threat actors engaged in malicious activities such as information operations and espionage. Weaknesses within cloud projects may be exploited to achieve malicious objectives. Thus, organisations must remain vigilant and proactively enhance their cloud security posture to mitigate risks associated with these events.

 

Strategies for Defence:

To counteract prevalent threats, organisations must prioritise strong security measures. Google Cloud offers various security features, including two-factor authentication (2FA), strong password policies, IAM policies, Cloud Audit Logs, and Security Command Centre. These tools empower organisations to monitor for suspicious activity, enforce access controls, and respond swiftly to security incidents.

 

Mitigating Ransomware and Data Theft:

Ransomware attacks and data theft incidents continue to target unprotected cloud storage services and mis-configured networks. Strengthening cloud asset management and data protection is imperative to mitigate these risks. Weak credentials, mis-configurations, application vulnerabilities, and third-party issues contribute to system compromises, emphasising the need for comprehensive security measures.

 

Real-World Incidents and Insights:

Recent incidents highlight the real-world consequences of inadequate cloud security practices. For instance, suspected ransomware actors breached Slovenia's largest power provider by exploiting unprotected cloud storage instances. Similarly, misconfigured servers during a data centre migration led to a ransomware attack on cloud-hosting firms, resulting in lost customer data.

 

Proactive Measures and Awareness:

Threat actors exploit vulnerabilities in cloud environments through sophisticated tactics such as probing weak storage bucket naming conventions. Organisations must prioritise proactive measures, including regular security assessments, employee training, and adherence to best practices to mitigate such risks effectively.

 

Conclusion:

As cloud adoption continues to accelerate, ensuring robust security measures is paramount. The Google Cloud Threat Horizons Report provides valuable insights to inform actionable strategies for safeguarding cloud environments in 2024 and beyond. By implementing proactive security measures and staying abreast of emerging threats, organisations can enhance their resilience against evolving cyber threats.

More from this category

  • Information Technology
  • 06/12/2024
  • 02:40
Benevity

Benevity celebrates over $140 million donated and a 17% increase in volunteer hours logged on GivingTuesday

The global corporate community continues to grow support for nonprofits, backing over 56,000 organizations this year via Benevity’s platformCALGARY, Alberta, Dec. 05, 2024 (GLOBE NEWSWIRE) -- Benevity, Inc., the market-leading global provider of corporate social responsibility solutions, announced that over $140 million was donated to nonprofits through its platform on GivingTuesday. This marks another milestone day of donations and volunteer efforts supported on Benevity’s platform with 637 companies participating this year.With more than 148,000 individuals coming together to support over 56,000 nonprofits across 122 countries and territories this year, Benevity saw donation dollars per donor increase by an estimated 2%…

  • Information Technology, Legal
  • 06/12/2024
  • 00:01
Victorian Legal Services Board + Commissioner

AI guidance to safeguard consumers of legal services

JOINT MEDIA RELEASE Friday, 6 December 2024 AI guidance to safeguard consumers of legal services Legal profession regulators from across the three Uniform Law states have jointly issued a statement to guide lawyers in their responsible and ethical use of artificial intelligence (AI). The Law Society of NSW, the Legal Practice Board of Western Australia, and the Victorian Legal Services Board and Commissioner, have put forward a set of common principles. The aim is to help to protect clients from risk, ensure the technology is used for their benefit, and preserve the proper administration of justice. The statement applies to…

  • Contains:
  • Agriculture Farming Rural, Information Technology
  • 05/12/2024
  • 13:55
La Trobe University

AI supercharges smart irrigation for farms

A smart irrigation system powered by artificial intelligence will tell sugarcane farmers when and where to water their crops in an advance that could one day revolutionise agriculture – and help preserve the health of the Great Barrier Reef. Developed by Victoria’s La Trobe University for far-north Queensland ag-tech company Aglantis, the intelligent irrigation system uses the Internet of Things to automate water pump management and monitor sunlight, temperature and humidity levels without human interaction. The system was initially conceived as a project to improve land management and prevent fertiliser run-off from farms into the Great Barrier Reef, but with…

Media Outreach made fast, easy, simple.

Feature your press release on Medianet's News Hub every time you distribute with Medianet. Pay per release or save with a subscription.