According to Redlock, cryptojacking, account compromises, and a lack of high-severity patching are all making the outlook on using AWS potentially one of higher risk. Too many companies seem to be forgetting that security must extend to the cloud to guarantee that their data will be safe. This means moving the focus of many security teams and also making certain that tools are configured to meet the needs of a new environment.
While many tools are now becoming AWS-aware, this is something of a new trend, and organizations must instill governance in the “livestock not pets” world of modern development and provisioning.
Read more here: