Tamnoon has released its “State of Cloud Remediation” report, analyzing over 4.76 million CNAPP alerts across major enterprises. As major breaches continue, from AT&T’s exposure of 110 million records to the massive AWS attack affecting 230 million cloud environments, the report reveals a weakness: critical cloud security alerts take an average of 128 days to resolve—87 days longer than high-severity ones—exposing organizations to extended periods of vulnerability.
While cloud adoption accelerates, security teams struggle to keep pace. Misconfigurations account for 53.53% of all security alerts, and IAM/identity issues—central to recent breaches at Snowflake customers—remain open for an average of 260 days. The report shows that high-severity alerts make up one-third (33.7%) of all findings asCNAPPs intentionally push many borderline-critical issues into the high-severity queue, creating an unsustainable backlog.
You can read the report here.
Like this:
Like Loading...
Related
This entry was posted on February 25, 2025 at 9:00 am and is filed under Commentary with tags Tamnoon. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Tamnoon report reveals critical cloud security alerts take 128 days to resolve, highlighting remediation crisis
Tamnoon has released its “State of Cloud Remediation” report, analyzing over 4.76 million CNAPP alerts across major enterprises. As major breaches continue, from AT&T’s exposure of 110 million records to the massive AWS attack affecting 230 million cloud environments, the report reveals a weakness: critical cloud security alerts take an average of 128 days to resolve—87 days longer than high-severity ones—exposing organizations to extended periods of vulnerability.
While cloud adoption accelerates, security teams struggle to keep pace. Misconfigurations account for 53.53% of all security alerts, and IAM/identity issues—central to recent breaches at Snowflake customers—remain open for an average of 260 days. The report shows that high-severity alerts make up one-third (33.7%) of all findings asCNAPPs intentionally push many borderline-critical issues into the high-severity queue, creating an unsustainable backlog.
You can read the report here.
Share this:
Like this:
Related
This entry was posted on February 25, 2025 at 9:00 am and is filed under Commentary with tags Tamnoon. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.