In a comprehensive analysis of nearly five million internet-exposed assets, Google Cloud-hosted services showed 38% of assets with at least one security issue, more than double AWS’s 15% rate. Moreover, 5.35% of Google Cloud assets contained vulnerabilities deemed easy to exploit by attackers, driven by both misconfigurations and known software flaws. Although no widespread data theft or severe breaches have been reported to date, this high exposure rate leaves customer workloads susceptible to unauthorized access, potential data exposure, and service disruptions. Critical issues, while less common at 0.04%, combined with easily exploitable vulnerabilities could allow attackers to pivot through cloud environments, potentially undermining trust and disrupting business operations. Left unaddressed, these vulnerabilities may result in unexpected downtime, compliance violations, and reputational harm as security incidents attract media attention and scrutiny from regulatory bodies. The complexity of multi-cloud deployments further exacerbates the challenge, with overlooked assets and shadow IT creating additional attack surface. Security teams must prioritize continuous monitoring, automated patch management, and seedless discovery to identify and remediate misconfigurations and software flaws before they can be weaponized by adversaries.
Source: https://hackread.com/cloud-vulnerability-data-google-cloud-leads-risk/
"id": "goo1046050625",
"linkid": "googlecloudsecurity",
"type": "Vulnerability",
"date": "5/2025",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"