2022 State of Public Cloud Security Report

Securesult is pleased to bring you The 2022 State of the Public Cloud Security Report. This study was compiled by our partner, Orca Security and the Orca Research Pod, a team of twelve researchers who analyzed workload, configuration, and identity data captured from billions of cloud assets on AWS, Azure and Google Cloud scanned by the Orca Cloud Security Platform.

The study shows that while many organizations list cloud security as one of their top IT priorities, there are still many basic security practices that are not being followed.

Some key findings include:


78% of identified attack paths use known vulnerabilities (CVEs) as an initial access attack vector


70% of organizations have a Kubernetes API server that is publicly accessible.


58% of organizations have a serverless AWS Lambda function or Google Cloud function with unsupported runtimes

We partner with the best to bring you the latest innovations and the best services