Cloud Threat Findings Report 2023

As experienced incident responders, James and I have provided crucial support to numerous large enterprises in their response to significant attacks. Time is of the utmost importance in incident response. And, as organizations increasingly adopted cloud technologies, we encountered growing challenges in assisting our clients with swift incident response. Traditional forensics tools and approaches were no longer sufficient, compelling us to seek a better solution. Our frustrations and personal experiences paved the way for the founding of Cado Security, where we developed a platform to revolutionize incident response for the cloud era.

At Cado Security, our mission extends beyond serving enterprises by offering a platform to facilitate efficient cloud forensics and incident response. As the founder and a threat researcher myself, my vision for Cado involved investing in initiatives aimed at empowering the broader security community. In pursuit of this goal, we established an internal threat research division dedicated to monitoring the latest attack trends and cloud-focused tactics, techniques, and procedures (TTPs). The following report provides a summary of our team’s significant discoveries in 2022.

Our intention in sharing these findings is to equip fellow incident responders and security personnel with the knowledge they need to remain at the forefront of securing organizations.