Jack Mannino, CEO at nVisium, tells Security Magazine that“From the details provided, it appears as though an attacker was able to compromise an externally exposed service and successfully moved laterally within their cloud architecture to gain unauthorized access to sensitive data. Many environments fail to perform internal network segmentation, secrets management, and least-privilege IAM access, which can aid attackers in elevating their privileges across systems.”

Read entire article here