{"id":53688,"date":"2023-09-15T15:36:00","date_gmt":"2023-09-15T15:36:00","guid":{"rendered":"https:\/\/www.networkworld.com\/article\/3706948\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.html#tk.rss_security"},"modified":"2023-09-15T15:36:00","modified_gmt":"2023-09-15T15:36:00","slug":"ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/","title":{"rendered":"IBM X-Force: Use of compromised credentials darkens cloud security picture"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/images.idgesg.net\/images\/article\/2023\/03\/corporate-security-insider-threat-hacker-spy-cybersecurity-human-resources-100938221-large.jpg?auto=webp&amp;quality=85,70\" class=\"ff-og-image-inserted\"><\/div>\n<p>As connectivity to cloud-based resources grows, cybercriminals are using valid, compromised credentials to access enterprise resources at an alarming rate.<\/p>\n<p>That&#8217;s one of the chief findings of the&nbsp;<a href=\"https:\/\/www.ibm.com\/downloads\/cas\/QWBXVAPL\" rel=\"nofollow\">IBM X-Force Cloud Threat Landscape Report<\/a>, which also found a 200% increase (about 3,900 vulnerabilities) in cloud-oriented Common Vulnerabilities and Exposures (CVE) in the last year.<\/p>\n<p>\u201cOver 35% of cloud security incidents occurred from attackers\u2019 use of valid, compromised credentials,\u201d wrote Chris Caridi, strategic cyber threat analyst with IBM X-Force, in a <a href=\"https:\/\/securityintelligence.com\/posts\/adversaries-use-valid-credentials-compromise-cloud-environments\/\" rel=\"nofollow\">blog<\/a> about the report. \u201cMaking up nearly 90% of assets for sale on dark web marketplaces, credentials\u2019 popularity among cybercriminals is apparent, averaging $10 per listing \u2013 or the equivalent of a dozen doughnuts.\u201d<\/p>\n<p>With the increased use of edge, branch and remote networked users accessing multicloud environments, it is clear organizations need to tighten the access privileges IT gives those users.<\/p>\n<p>In fact, X-Force found plain text credentials located on user endpoints in 33% of engagements involving cloud environments.<\/p>\n<p>\u201cIn particular, there was a high frequency of service account credentials stored on endpoints, and many were over-privileged. Excessively privileged users can be defined as those who have more permissions than they need to do their job or task,\u201d the report stated.<\/p>\n<aside class=\"nativo-promo nativo-promo-1 smartphone\" id> <\/aside>\n<p>\u201cCompromised credentials caused over one-third of cloud-related incidents that the X-Force team observed, suggesting that businesses are challenged to balance user access needs and security risks,&#8221; the report stated.<\/p>\n<p>Once successful, cybercriminals can take advantage of this access to facilitate their ultimate objective, which can involve deploying cryptominers, ransomware and other types of malware, X-Force stated.<\/p>\n<aside class=\"nativo-promo nativo-promo-1 tablet desktop\" id> <\/aside>\n<p>\u201cOrganizations can benefit from AI-powered identity protections that help identify behavioral anomalies in depth and verify users\u2019 identity,\u201d the report stated.<\/p>\n<p>Other common attack vectors include the exploitation of public-facing applications and phishing\/spear phishing links, each of which represented approximately 14% of incidents the X-Force team responded to.<\/p>\n<p>Microsoft Outlook Cloud credentials accounted for over 5 million mentions on illicit marketplaces \u2013 by far the most popular access for sale, Caridi stated.<\/p>\n<p>The exploitation of vulnerabilities in public-facing applications is a tried-and-true access vector for threat actors in cloud and local environments alike, the report stated.<\/p>\n<aside class=\"nativo-promo nativo-promo-2 tablet desktop smartphone\" id> <\/aside>\n<p>\u201cCloud applications are typically more challenging for organizations to manage due to the increasing number of applications and services used in a modern cloud or hybrid cloud environment,\u201d the report stated. \u201cIf implemented improperly, it\u2019s possible to overlook an outdated application running in the cloud, or worse, be unaware that the application is even in use.\u201d<\/p>\n<p>A few of the other key report findings include: &nbsp;<\/p>\n<ul>\n<li>The X-Force team has observed adversaries installing proxyware \u2013 a legitimate network segmentation tool \u2013 on unsuspecting victims\u2019 systems to resell the victims\u2019 computer bandwidth. Research suggests that a proxyjacking campaign could net threat actors roughly $9.60 within 24 hours for one IP address, and deploying it by Log4j could provide $220,000 in profit per month. Additionally, proxyjacking can result in victims being hit with large cloud provider charges due to the increase in unexpected web traffic.<\/li>\n<li>Nearly 60% of newly disclosed vulnerabilities, if exploited, could allow attackers to obtain information or either gain access or privileges that enable lateral movement through the network. From providing attackers information on how environments are set up to unauthorized authentication that can grant them additional permissions, it\u2019s critical for organizations to know which risks to prioritize&nbsp;\u2013 especially when operating with limited resources.<\/li>\n<li>The Chaos Remote Administrative Tool (Trojan.Linux.CHAOSRAT) is being deployed as a remote access tool (RAT). Chaos RAT functions include reverse shell file download, upload and delete; screenshots; operating system information gathering; shutting down and restarting the host; and opening URLs. This RAT shows the sophistication and evolution of cloud-based threat actors.<\/li>\n<\/ul>\n<p>The X-Force researchers made a number of suggestions in response to their findings.&nbsp; For example, they said customers should utilize zero trust security technologies to include implementation of multifactor authentication (MFA) and the principle of least privilege.<\/p>\n<p>\u201cThis strategy is especially important for private clouds that may interact with other on-premises assets on a regular basis,\u201d the report stated. \u201cModernize identity and access management (IAM) to reduce reliance on username and password combinations and combat threat actor credential theft.\u201d<\/p>\n<aside class=\"nativo-promo nativo-promo-3 tablet desktop smartphone\" id> <\/aside>\n<p>They also recommended using AI-based capabilities to help scrutinize digital identities and behaviors, verify their legitimacy, and deliver smarter authentication.<\/p>\n<p>The threat landscape report is based on data gathered from X-Force threat intelligence, penetration tests, incident response engagements, <a href=\"https:\/\/www.redhat.com\/en\/technologies\/management\/insights\" rel=\"nofollow\">Red Hat Insights<\/a> and data provided by report contributor <u><a href=\"https:\/\/cybersixgill.com\/\" rel=\"nofollow\">Cybersixgill<\/a><\/u> between June 2022 and June 2023.&nbsp;<\/p>\n<div class=\"end-note\"> <!-- blx4 #2005 blox4.html --> <\/p>\n<div id class=\"blx blxParticleendnote blxM2005 blox4_html blxC23909\">\n<p> <strong>Next read this:<\/strong> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p> READ MORE <a href=\"https:\/\/www.networkworld.com\/article\/3706948\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.html#tk.rss_security\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\nAs connectivity to cloud-based resources grows, cybercriminals are using valid, compromised credentials to access enterprise resources at an alarming rate.That&#8217;s one of the chief findings of the\u00a0IBM X-Force Cloud Threat Landscape Report, which also found a 200% increase (about 3,900 vulnerabilities) in cloud-oriented Common Vulnerabilities and Exposures (CVE) in the last year.\u201cOver 35% of cloud security incidents occurred from attackers\u2019 use of valid, compromised credentials,\u201d wrote Chris Caridi, strategic cyber threat analyst with IBM X-Force, in a blog about the report. \u201cMaking up nearly 90% of assets for sale on dark web marketplaces, credentials\u2019 popularity among cybercriminals is apparent, averaging $10 per listing \u2013 or the equivalent of a dozen doughnuts.\u201dTo read this article in full, please click here READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":53689,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[738],"tags":[1253,9410,536,1061],"class_list":["post-53688","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-networkworld","tag-cloud-computing","tag-cloud-management","tag-cloud-security","tag-network-security"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>IBM X-Force: Use of compromised credentials darkens cloud security picture 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"IBM X-Force: Use of compromised credentials darkens cloud security picture 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2023-09-15T15:36:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/images.idgesg.net\/images\/article\/2023\/03\/corporate-security-insider-threat-hacker-spy-cybersecurity-human-resources-100938221-large.jpg?auto=webp&amp;quality=85,70\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"IBM X-Force: Use of compromised credentials darkens cloud security picture\",\"datePublished\":\"2023-09-15T15:36:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/\"},\"wordCount\":752,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/09\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.jpg\",\"keywords\":[\"cloud computing\",\"Cloud Management\",\"Cloud Security\",\"Network Security\"],\"articleSection\":[\"Networkworld\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/\",\"name\":\"IBM X-Force: Use of compromised credentials darkens cloud security picture 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/09\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.jpg\",\"datePublished\":\"2023-09-15T15:36:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/09\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/09\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.jpg\",\"width\":150,\"height\":100},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"cloud computing\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/cloud-computing\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"IBM X-Force: Use of compromised credentials darkens cloud security picture\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"IBM X-Force: Use of compromised credentials darkens cloud security picture 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/","og_locale":"en_US","og_type":"article","og_title":"IBM X-Force: Use of compromised credentials darkens cloud security picture 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2023-09-15T15:36:00+00:00","og_image":[{"url":"https:\/\/images.idgesg.net\/images\/article\/2023\/03\/corporate-security-insider-threat-hacker-spy-cybersecurity-human-resources-100938221-large.jpg?auto=webp&amp;quality=85,70","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"IBM X-Force: Use of compromised credentials darkens cloud security picture","datePublished":"2023-09-15T15:36:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/"},"wordCount":752,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/09\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.jpg","keywords":["cloud computing","Cloud Management","Cloud Security","Network Security"],"articleSection":["Networkworld"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/","url":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/","name":"IBM X-Force: Use of compromised credentials darkens cloud security picture 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/09\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.jpg","datePublished":"2023-09-15T15:36:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/09\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/09\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture.jpg","width":150,"height":100},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/ibm-x-force-use-of-compromised-credentials-darkens-cloud-security-picture\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"cloud computing","item":"https:\/\/www.threatshub.org\/blog\/tag\/cloud-computing\/"},{"@type":"ListItem","position":3,"name":"IBM X-Force: Use of compromised credentials darkens cloud security picture"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/53688","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=53688"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/53688\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/53689"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=53688"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=53688"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=53688"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}