Global survey finds gaps leave cloud security dangerously exposed
Check Point has released its 2025 Cloud Security Report, revealing systemic vulnerabilities in cloud security across global enterprises and highlighting key areas where risk and operational inefficiency are leaving organisations exposed.
The report is based on a survey of 937 chief information security officers (CISOs) and IT leaders worldwide, focusing on the challenges faced in securing hybrid, multi-cloud, and edge environments. It documents that 65% of organisations suffered a cloud-related security incident in the past year, a rise from 61% in the previous year.
The findings underscore the difficulties companies are experiencing in keeping up with rapid technological change and increasingly sophisticated cyber threats. Only 9% of organisations detected a cloud incident within the first hour, with just 6% managing to remediate such incidents in the same timeframe. This gap provides intruders with more opportunity to remain undetected and exploit weaknesses within cloud environments.
Paul Barbosa, Vice President of Cloud Security at Check Point, commented: "Security teams are chasing an ever-moving target. As cloud environments grow more complex and AI-driven threats evolve, organisations can't afford to be stuck with fragmented tools and legacy approaches. It's time to shift toward unified, intelligent, and automated defences designed for the realities of today's decentralised world."
The report highlights that cloud adoption continues to outpace security preparedness, with 62% of organisations now using cloud edge technologies, 57% operating hybrid cloud models, and 51% using multi-cloud strategies. Legacy, perimeter-based defences have proven inadequate in keeping pace with these distributed architectures.
In terms of detection and remediation, the report found that most organisations remain vulnerable, as 62% took more than 24 hours to remediate breaches. This delay in response time presents attackers with a significant opportunity to escalate access and inflict greater harm.
The complexity of cloud security toolsets emerged as an additional concern. The report found that 71% of respondents depend on more than 10 different cloud security tools, and 16% use over 50 tools. More than half of these respondents report experiencing nearly 500 security alerts each day. This high volume of alerts results in alert fatigue, which can slow response times and increase the likelihood that genuine threats are missed.
Application security appears inadequate for combating modern threats, with 61% of organisations still relying on traditional, signature-based web application firewalls. These are increasingly ineffective against attacks enhanced by artificial intelligence.
While 68% of respondents listed artificial intelligence as a top priority for cyber defence, only 25% felt confident in their ability to respond to AI-driven attacks, illustrating a significant gap in capability and readiness to address emerging threats.
Visibility into lateral movement—where attackers move undetected between systems within a cloud environment—remains limited. Only 17% of organisations reported having full visibility into east-west cloud traffic. As a result, once attackers breach an initial perimeter, they often have the ability to move freely and undetected within cloud environments.
Detection of threats is also problematic, with only 35% of incidents identified by automated security monitoring platforms. The majority are detected by employees, through audits, or via external reports, exposing shortcomings in real-time threat detection capabilities.
Internal challenges further complicate progress. The report notes that 54% of respondents pointed to the rapid pace of technological change as a major obstacle. A shortage of skilled security professionals also represents a substantial barrier for 49% of those surveyed. In addition, 40% identified fragmented toolsets and poor integration between platforms as drivers that slow response and exacerbate visibility gaps.
The survey was conducted by Cybersecurity Insiders in early 2025 and included CISOs, cloud architects, security analysts, and IT leaders from across North America, Europe, Asia-Pacific, and other regions. Respondents were asked about cloud security issues, the adoption of artificial intelligence, and the complexities associated with current security architectures.
Check Point's recommendations include a move towards decentralised, prevention-focused cloud security strategies. The report advises organisations to consolidate their tools, adopt AI-powered threat detection, and implement real-time telemetry to achieve full visibility across all cloud deployments. The company suggests that using its CloudGuard and Infinity Platform solutions can help firms unify defences, automate incident response, and maintain consistent policy enforcement across platforms and providers.
Deryck Mitchelson, Global CISO at Check Point, provided further perspective in the report: "Cloud transformation is accelerating faster than our defences. With attackers moving in minutes and defenders responding in days, the gap between detection and remediation is becoming a danger zone. CISOs must consolidate fragmented tools into unified platforms, gain visibility into lateral movement, and prepare their teams and technologies to counter AI-driven threats, or risk ceding control of the cloud to increasingly sophisticated adversaries."
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Techday NZ
18 hours ago
- Techday NZ
Global survey finds gaps leave cloud security dangerously exposed
Check Point has released its 2025 Cloud Security Report, revealing systemic vulnerabilities in cloud security across global enterprises and highlighting key areas where risk and operational inefficiency are leaving organisations exposed. The report is based on a survey of 937 chief information security officers (CISOs) and IT leaders worldwide, focusing on the challenges faced in securing hybrid, multi-cloud, and edge environments. It documents that 65% of organisations suffered a cloud-related security incident in the past year, a rise from 61% in the previous year. The findings underscore the difficulties companies are experiencing in keeping up with rapid technological change and increasingly sophisticated cyber threats. Only 9% of organisations detected a cloud incident within the first hour, with just 6% managing to remediate such incidents in the same timeframe. This gap provides intruders with more opportunity to remain undetected and exploit weaknesses within cloud environments. Paul Barbosa, Vice President of Cloud Security at Check Point, commented: "Security teams are chasing an ever-moving target. As cloud environments grow more complex and AI-driven threats evolve, organisations can't afford to be stuck with fragmented tools and legacy approaches. It's time to shift toward unified, intelligent, and automated defences designed for the realities of today's decentralised world." The report highlights that cloud adoption continues to outpace security preparedness, with 62% of organisations now using cloud edge technologies, 57% operating hybrid cloud models, and 51% using multi-cloud strategies. Legacy, perimeter-based defences have proven inadequate in keeping pace with these distributed architectures. In terms of detection and remediation, the report found that most organisations remain vulnerable, as 62% took more than 24 hours to remediate breaches. This delay in response time presents attackers with a significant opportunity to escalate access and inflict greater harm. The complexity of cloud security toolsets emerged as an additional concern. The report found that 71% of respondents depend on more than 10 different cloud security tools, and 16% use over 50 tools. More than half of these respondents report experiencing nearly 500 security alerts each day. This high volume of alerts results in alert fatigue, which can slow response times and increase the likelihood that genuine threats are missed. Application security appears inadequate for combating modern threats, with 61% of organisations still relying on traditional, signature-based web application firewalls. These are increasingly ineffective against attacks enhanced by artificial intelligence. While 68% of respondents listed artificial intelligence as a top priority for cyber defence, only 25% felt confident in their ability to respond to AI-driven attacks, illustrating a significant gap in capability and readiness to address emerging threats. Visibility into lateral movement—where attackers move undetected between systems within a cloud environment—remains limited. Only 17% of organisations reported having full visibility into east-west cloud traffic. As a result, once attackers breach an initial perimeter, they often have the ability to move freely and undetected within cloud environments. Detection of threats is also problematic, with only 35% of incidents identified by automated security monitoring platforms. The majority are detected by employees, through audits, or via external reports, exposing shortcomings in real-time threat detection capabilities. Internal challenges further complicate progress. The report notes that 54% of respondents pointed to the rapid pace of technological change as a major obstacle. A shortage of skilled security professionals also represents a substantial barrier for 49% of those surveyed. In addition, 40% identified fragmented toolsets and poor integration between platforms as drivers that slow response and exacerbate visibility gaps. The survey was conducted by Cybersecurity Insiders in early 2025 and included CISOs, cloud architects, security analysts, and IT leaders from across North America, Europe, Asia-Pacific, and other regions. Respondents were asked about cloud security issues, the adoption of artificial intelligence, and the complexities associated with current security architectures. Check Point's recommendations include a move towards decentralised, prevention-focused cloud security strategies. The report advises organisations to consolidate their tools, adopt AI-powered threat detection, and implement real-time telemetry to achieve full visibility across all cloud deployments. The company suggests that using its CloudGuard and Infinity Platform solutions can help firms unify defences, automate incident response, and maintain consistent policy enforcement across platforms and providers. Deryck Mitchelson, Global CISO at Check Point, provided further perspective in the report: "Cloud transformation is accelerating faster than our defences. With attackers moving in minutes and defenders responding in days, the gap between detection and remediation is becoming a danger zone. CISOs must consolidate fragmented tools into unified platforms, gain visibility into lateral movement, and prepare their teams and technologies to counter AI-driven threats, or risk ceding control of the cloud to increasingly sophisticated adversaries."
Techday NZ
a day ago
- Techday NZ
Cloud security gaps widen as AI threats outpace defences
Check Point has released its 2025 Cloud Security Report, revealing ongoing challenges faced by enterprises in protecting multi-cloud environments against evolving cyber threats. The report draws on a global survey of more than 900 Chief Information Security Officers (CISOs) and IT leaders, offering detailed insights into cloud security priorities, operational risks, and emerging trends such as generative AI threats and increasing infrastructure complexity. According to the findings, 65% of surveyed organisations experienced a cloud-related security incident in the past year, an increase from 61% the previous year. Only 9% detected incidents within the first hour, and just 6% were able to remediate breaches in that timeframe, providing cyber attackers with extended access across cloud environments. Paul Barbosa, Vice President of Cloud Security at Check Point, commented, "Security teams are chasing an ever-moving target. As cloud environments grow more complex and AI-driven threats evolve, organizations can't afford to be stuck with fragmented tools and legacy approaches. It's time to shift toward unified, intelligent, and automated defenses designed for the realities of today's decentralized world." The report's data indicates that cloud adoption is outpacing organisations' security readiness. While 62% of organisations have embraced cloud edge technologies, 57% deploy hybrid cloud models, and 51% operate in multi-cloud environments, many continue to rely on legacy, perimeter-based defences which prove inadequate for these distributed architectures. Detection and remediation of security incidents remains a major challenge. Only 9% of organisations identified incidents within the first hour, while 62% required more than 24 hours to remediate breaches, giving attackers opportunities to escalate their access. The prevalence of tool sprawl is another concern highlighted in the report. A significant 71% of respondents use more than 10 different cloud security tools, with 16% using over 50. As a result, more than half of these organisations contend with nearly 500 alerts daily, which hinders response times and overwhelms security analysts. When addressing application security, the report finds that 61% of organisations still depend on outdated, signature-based Web Application Firewalls (WAFs). These legacy tools are increasingly ineffective against sophisticated, AI-enhanced cyber threats. Artificial intelligence is a growing focus for cyber defence, with 68% of respondents ranking AI as a top priority. However, only 25% feel adequately prepared to counter AI-driven attacks, revealing a substantial gap in defensive capabilities. Lateral movement within cloud environments - a tactic that enables attackers to navigate undetected once inside a network—remains a critical blind spot. Only 17% of organisations report having full visibility into east-west cloud traffic, making it easier for adversaries to avoid detection following an initial breach. The report also points to shortcomings in threat detection mechanisms. Only 35% of cloud incidents were identified via security monitoring platforms. The majority were discovered by employees, routine audits, or through external reporting, demonstrating limitations in real-time threat detection systems. Internal organisational challenges further complicate effective cloud security. Over half of respondents (54%) cite the rapid pace of technological change as a major hurdle, and 49% report a shortage of skilled security professionals. Tool fragmentation and inadequate integration (experienced by 40%) also contribute to slower response times and increased risk of undetected incidents. In response to these ongoing issues, Check Point recommends organisations move toward decentralised, prevention-first cloud security strategies. This approach includes consolidating security toolsets, adopting AI-based threat detection, and deploying real-time telemetry to achieve comprehensive visibility across edge, hybrid, and multi-cloud infrastructures. By using platforms such as Check Point CloudGuard and the Check Point Infinity Platform, the company suggests that organisations can unify cloud defences, automate incident response processes, and maintain consistent policy enforcement across all environments regardless of the underlying technology or provider. Deryck Mitchelson, Global CISO at Check Point Software Technologies, provides guidance in the report and emphasises, "cloud transformation is accelerating faster than our defenses. With attackers moving in minutes and defenders responding in days, the gap between detection and remediation is becoming a danger zone. CISOs must consolidate fragmented tools into unified platforms, gain visibility into lateral movement, and prepare their teams and technologies to counter AI-driven threats, or risk ceding control of the cloud to increasingly sophisticated adversaries." The 2025 Cloud Security Report was prepared by Cybersecurity Insiders, surveying 937 cybersecurity professionals worldwide, including CISOs, cloud architects, security analysts, and IT leaders. The research addresses how businesses securing hybrid, multi-cloud, and SaaS environments are responding to current threats, with particular focus on advancements such as artificial intelligence and the heightened complexity of modern cloud security.
Techday NZ
28-05-2025
- Techday NZ
Check Point boosts Quantum Force with AI security update
Check Point has announced significant enhancements to its Quantum Force platform, including an automatic upgrade that delivers a 15%-25% performance boost in threat prevention throughput for all Quantum Force Hybrid Mesh firewalls, as well as the introduction of AI-powered security appliances designed for branch offices. The updates are designed to address growing demands for software-driven security solutions and the increasing threat landscape facing enterprise networks and branch locations. The performance boosts, delivered automatically via software updates, enhance existing security infrastructure without requiring hardware changes. Check Point's new Quantum Force Branch Office Security Gateways offer up to four times the threat prevention performance of previous generations, aiming to meet the security requirements of distributed and hybrid enterprise networks. The four new branch models are engineered to handle rising attack rates on branch offices, which, according to Check Point Research, now experience an average of 713 weekly attack attempts per location, a 36% increase from last year. Additionally, 50% of branch offices reportedly encounter efforts to exploit vulnerabilities from external sources, underlining the importance of robust branch security. "As we continue to prioritise innovation and efficiency, Check Point's new Quantum Force Branch Office Security Gateway firewalls are built for speed, simplicity, and security. They're 4x faster than previous models, optimised for SD-WAN, and backed by our latest AI-powered threat prevention. And with automatic performance upgrades, existing Quantum Force customers will receive a 15-25% performance boost with a software update — no hardware changes required," said Nataly Kremer, Chief Product Officer at Check Point. The branch office appliances are designed to provide a 99.9% block rate for threats, as verified in Miercom's 2025 security benchmark report, deliver improved security for cloud applications, and offer increased connectivity and port capacity. With the adoption of SD-WAN technology and the expansion of remote work, these features are poised to enhance branch office security, making it more resilient and responsive to changing operational needs. Check Point points to findings in its CPR 2025 Security Report, which shows a 44% annual rise in cyberattacks, reflecting the intensification of the security environment for branch locations. The company has designed the new appliances to maintain strong security without impacting network performance or user productivity, a crucial factor for locations that engage in direct customer interactions. "World Wide Technology (WWT) provides security products and services to customers across a variety of industries, including financial services, manufacturing, retail and healthcare with distributed branch offices. Check Point's new next-generation Quantum Force Branch Office Security Gateways with enhanced AI powered threat prevention, empower us to protect these customers from the latest attacks on branch offices. These innovations help our clients reduce risk, streamline operations, and scale securely across hybrid environments — turning cyber resilience into a competitive advantage," Chris Konrad, Vice President of Global Cyber at World Wide Technology (WWT), said, commenting on the new offerings. The company has also released a new generation of Quantum Smart-1 Management Appliances, featuring a twofold increase in managed gateway capacity and up to 70% higher log processing rates. These management solutions are intended to centralise and automate security operations across hybrid environments through AI-powered tools and policy orchestration. "Security teams today face more pressure than ever — from rising AI-generated threats to managing fragmented infrastructures. Our new Quantum Smart-1 Management Appliances simplify that complexity. Our new Quantum Smart-1 Management Appliances combine AI, speed, precision, and automation to help organisations manage on-premise, cloud, and distributed IT deployments — faster and smarter," said Nataly Kremer, Chief Product Officer at Check Point. The seventh-generation Smart-1 appliances offer local storage scaling up to 70TB for compliance requirements and support management for up to 10,000 gateways. This architecture is designed to combine unified management across on-premises, cloud, and remote deployments, with integration for over 250 third-party solutions. "The Check Point Infinity Platform demonstrated superior security efficacy, consistently outperforming its peers in the test category of comprehensive threat prevention and response, as well as excelling in the AI-powered testing scenarios. Its AI-driven architecture, hybrid mesh deployment model, and unified security operations prove that Check Point is setting the pace for next-generation cyber security," Rob Smithers, CEO at Miercom, said, highlighting the platform's performance in recent testing. "Branch offices are often the soft spots in enterprise security, providing vulnerable entry-points for attacks and compromising the security posture across the enterprise. Check Point's new Quantum Branch Office Security Gateways deliver robust threat prevention to the edge, enabling organisations to secure their branch offices from emerging cyber threats while keeping pace with the demands of the hybrid workforce," Pete Finalle, Security Research Manager at IDC, noted the importance of edge security. Check Point's Quantum Force Branch Office Security Gateways and Smart-1 Management Appliances are currently available through its network of partners worldwide.
