Incidents

A historical collection of past cloud security incidents and campaigns, offering insights into targeting patterns, initial access methods and effective impact.

Actors

Profiles of threat actors involved in cloud security incidents, shedding light on their potential motivations and victimology, to aid in risk assessment and threat modeling.

Techniques

An overview of attack techniques used by threat actors in cloud security incidents, aligned with the MITRE ATT&CK matrix framework for additional context.

Tools

Details on software utilized by threat actors in their activities targeting cloud environments, ranging from penetration testing utilities to bespoke malware.

Targeted Technologies

Analysis of frequently targeted software found in cloud environments, noting their prevalence and any related incidents and techniques.

Defenses

A corpus of cloud security measures that can serve to mitigate risks and prevent or detect attack techniques. Each mechanism is mapped to the MITRE D3FEND matrix.

About

More information about the Cloud Threat Landscape.

Periodic Table of Cloud Security

Cloud security measures organized in the form of a periodic table.