{"id":36321,"date":"2020-07-28T14:00:00","date_gmt":"2020-07-28T14:00:00","guid":{"rendered":"https:\/\/www.darkreading.com\/cloud\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/a\/d-id\/1338450"},"modified":"2020-07-28T14:00:00","modified_gmt":"2020-07-28T14:00:00","slug":"as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/","title":{"rendered":"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind"},"content":{"rendered":"<header><\/header>\n<p><span class=\"strong black\">In the wake of COVID-19, data theft is by far the top tactic, followed by cryptomining and ransomware.<\/span><\/p>\n<p class>COVID-19 has introduced many new normals for business, and IT operations are no exception. Despite tighter technology budgets in the wake of the economic recession, companies are moving full steam ahead toward the cloud due to the agility and scale it provides.<\/p>\n<p>According to a recent report from Flexera<em>, <\/em><a href=\"https:\/\/www.flexera.com\/about-us\/press-center\/flexera-releases-2020-state-of-the-cloud-report.html\" target=\"_blank\" rel=\"noopener noreferrer\">59% of companies surveyed<\/a> plan on increasing their spending on cloud services in the post-pandemic world, with 30% of companies planning to spend &#8220;significantly&#8221; more. But cybercriminals and other threat actors are adapting to the technology, too, taking advantage of the fact that organizations are still discovering best practices surrounding cloud security and incident response.<\/p>\n<p>The risk is high \u2014 with cloud systems often holding an unprecedented amount of valuable and sensitive data that can put both organizations and their customers in danger if breached. Our team of security incident responders at IBM X-Force IRIS have taken the opportunity to analyze the most common types of cloud compromises we&#8217;ve seen over the past year, how they&#8217;re being used to cause harm, and where organizations should focus to reduce their risks. Here&#8217;s what we found.<\/p>\n<p><strong>How Threat Actors Are Compromising Cloud Environments<\/strong><br \/>While there are several ways we&#8217;ve seen cybercriminals target cloud systems, the most common initial infection vector was remote exploitation of cloud applications. In fact, this top attack pathway accounted for 45% of the cloud-related cybersecurity events we examined in our recent &#8220;<a href=\"https:\/\/www.ibm.com\/account\/reg\/us-en\/signup?formid=urx-44459\" target=\"_blank\" rel=\"noopener noreferrer\">Cloud Threat Landscape Report<\/a>&#8221; (registration required). In many cases, vulnerable applications were present in the environment but remained undetected. Addressing these remote vulnerabilities has been challenging, in part due to the lack of public cataloging of discovered issues.<\/p>\n<p>In addition to vulnerabilities, another core issue is security flaws introduced by users via misconfigurations. We&#8217;ve seen threat actors take advantage of misconfigured cloud servers to siphon over 1 billion records from compromised environments in 2019. The subsequent data leaks remain one of the greatest sources of record loss across the board and can quickly allow access to sensitive information from organizations. Threat actors are often able to take advantage of both these configuration errors and vulnerabilities within the applications due to employees standing up new cloud apps on their own, outside of approved channels, making shadow IT a core concern when it comes to cloud security.<\/p>\n<p><strong>How Threat Actors Use the Cloud to Cause Harm<\/strong><br \/>While we have seen hackers target the cloud for activities like cryptomining and ransomware, data theft is by far the top tactic we see attackers taking once they&#8217;ve breached cloud systems. The cloud is ideal for hosting large amounts of information, and this data can be stolen by threat actors and quickly sold on underground marketplaces. The types of data stolen can vary, but the most common targets are sensitive personally identifiable information and financial data such as credit card numbers. In one case, we found unauthorized access to cloud assets leading to losses of more than $50,000 in less than one hour. While the type of data stolen largely depends on threat actor motivations and sophistication, in cloud environments the amount of data available can be much greater, making the potential impact of a breach that much more damaging to the organization.<\/p>\n<p><strong>4 Takeaways to Enhance Cloud Security&nbsp;&nbsp;<\/strong><br \/>When executing a cloud security strategy, we recommend the following:<\/p>\n<p><strong>1. Have the right tools.<\/strong> Cloud assets should always be included in overall incident response plans. Test your cloud security incident response at a tactical level to ensure the tools you have are working across all cloud environments.<\/p>\n<p><strong>2. Automate incident response.<\/strong> Implement security automation in cloud environments to improve your detection and response capabilities \u2014 this has the potential to significantly speed response and reduce damages.<\/p>\n<p><strong>3. Redeploy, don&#8217;t reimage.<\/strong> Don&#8217;t terminate your cloud instances. When you do, your team loses potentially valuable forensic artifacts. Instead of destroying this data, isolate affected systems and stand up known clean images to allow forensic investigators to understand what went wrong and how to prevent it in the future.<\/p>\n<p><strong>4. Use threat intelligence.<\/strong> Threat actors are always evolving and augmenting their tactics, techniques, and procedures with new capabilities specifically to target cloud environments. As these capabilities continue to develop, leverage your threat intelligence to monitor changes in targeting and implement effective defense.<\/p>\n<p><strong>Related Content:<\/strong><\/p>\n<div readability=\"9.4217391304348\">\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/img.deusm.com\/darkreading\/MarilynCohodas\/VIRTUAL-BLACKHAT-VPLUG_468x60.png\" alt width=\"468\" height=\"60\"><\/p>\n<p><em><strong>&nbsp;<\/strong><\/em><\/p>\n<p><em><strong>&nbsp;<\/strong><\/em><\/p>\n<p><em><strong>Register now for this year&#8217;s fully virtual Black Hat USA, scheduled to take place August 1\u20136, and get more information about the event on the Black Hat website. Click for details on <a href=\"https:\/\/www.blackhat.com\/us-20\/\" target=\"_blank\" rel=\"noopener noreferrer\">conference information<\/a>&nbsp;and <a href=\"https:\/\/blackhat.informatech.com\/usa\/2020\/\" target=\"_blank\" rel=\"noopener noreferrer\">to register<\/a>.<\/strong><\/em><\/p>\n<\/div>\n<p><span class=\"italic\">Charles DeBeck is a senior cyber threat intelligence strategic analyst with IBM X-Force Incident Response and Intelligence Services (IRIS). Charles brings 7 years of experience working for the National Security Agency, Deloitte &amp; Touche LLP, and IBM. He firmly believes that &#8230; <a href=\"https:\/\/www.darkreading.com\/author-bio.asp?author_id=5558\">View Full Bio<\/a><\/span><\/p>\n<p><strong>Recommended Reading:<\/strong><\/p>\n<p><span class=\"smaller strong red allcaps\">More Insights<\/span><\/p>\n<p>Read More <a href=\"https:\/\/www.darkreading.com\/cloud\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/a\/d-id\/1338450?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In the wake of COVID-19, data theft is by far the top tactic, followed by cryptomining and ransomware. Read More <a href=\"https:\/\/www.darkreading.com\/cloud\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/a\/d-id\/1338450?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple\">HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-36321","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>As Businesses Move to the Cloud, Cybercriminals Follow Close Behind 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2020-07-28T14:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/img.deusm.com\/darkreading\/MarilynCohodas\/VIRTUAL-BLACKHAT-VPLUG_468x60.png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind\",\"datePublished\":\"2020-07-28T14:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/\"},\"wordCount\":822,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/img.deusm.com\\\/darkreading\\\/MarilynCohodas\\\/VIRTUAL-BLACKHAT-VPLUG_468x60.png\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/\",\"name\":\"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/img.deusm.com\\\/darkreading\\\/MarilynCohodas\\\/VIRTUAL-BLACKHAT-VPLUG_468x60.png\",\"datePublished\":\"2020-07-28T14:00:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/#primaryimage\",\"url\":\"https:\\\/\\\/img.deusm.com\\\/darkreading\\\/MarilynCohodas\\\/VIRTUAL-BLACKHAT-VPLUG_468x60.png\",\"contentUrl\":\"https:\\\/\\\/img.deusm.com\\\/darkreading\\\/MarilynCohodas\\\/VIRTUAL-BLACKHAT-VPLUG_468x60.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/","og_locale":"en_US","og_type":"article","og_title":"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2020-07-28T14:00:00+00:00","og_image":[{"url":"https:\/\/img.deusm.com\/darkreading\/MarilynCohodas\/VIRTUAL-BLACKHAT-VPLUG_468x60.png","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind","datePublished":"2020-07-28T14:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/"},"wordCount":822,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/#primaryimage"},"thumbnailUrl":"https:\/\/img.deusm.com\/darkreading\/MarilynCohodas\/VIRTUAL-BLACKHAT-VPLUG_468x60.png","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/","url":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/","name":"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/#primaryimage"},"thumbnailUrl":"https:\/\/img.deusm.com\/darkreading\/MarilynCohodas\/VIRTUAL-BLACKHAT-VPLUG_468x60.png","datePublished":"2020-07-28T14:00:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/#primaryimage","url":"https:\/\/img.deusm.com\/darkreading\/MarilynCohodas\/VIRTUAL-BLACKHAT-VPLUG_468x60.png","contentUrl":"https:\/\/img.deusm.com\/darkreading\/MarilynCohodas\/VIRTUAL-BLACKHAT-VPLUG_468x60.png"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/as-businesses-move-to-the-cloud-cybercriminals-follow-close-behind\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"As Businesses Move to the Cloud, Cybercriminals Follow Close Behind"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/36321","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=36321"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/36321\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=36321"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=36321"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=36321"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}