As business assets have moved to the cloud, cyber attackers have followed close behind. Starting with hosted email and webmail, cloud productivity apps like Office 365 and Google Workspace, and on to cloud development environments like AWS and Azure, cyber criminals have prized account credentials and made them the target of countless phishing campaigns. And with single sign-on giving lateral access to many different systems within an organisation, a single compromised account can cause widespread damage.
To protect against cloud account compromise, organisations should ensure they have robust security in place. Security platforms should be capable of end-to-end encryption and continuous data monitoring and detect incidents quickly to enable administrators to limit and resolve any damage.