"Just a few years ago, the cloud was touted as the "magic pill" for any cyber threat or performance issue. Many were lured by the "always-on" dream, trading granular control for the convenience of managed services. In recent years, many of us have learned (often the hard way) that public cloud service providers are not immune to attacks and SaaS downtime, hiding behind the Shared Responsibility cushion."
"According to the 2024 CISO's Guide to DevOps Threats report by GitProtect, leading cloud DevOps services suffered from 48 critical and major incidents. Comparing this with the 2025 edition of the report we've been working on by analyzing official providers' and third-party communications (to be published soon), we can see a 69% increase year-over-year (YoY) with 156 critical and major incidents in total!"
Cloud migration and widespread adoption of managed DevOps SaaS reduced granular control and increased operational exposure. Public cloud and SaaS providers experienced frequent attacks and downtime while relying on the Shared Responsibility model shifts many security and availability obligations to customers. Popular DevOps platforms saw hundreds of incidents and thousands of hours of degraded performance across consecutive years. Critical and major incidents rose sharply year-over-year, and total degraded-service hours nearly doubled. Login failures, sluggish responsiveness, and total outages are recurring operational risks. Organizations must reduce sole dependence on SaaS providers and implement active cyber resilience strategies and controls.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]