In Twistlock Labs’ first biannual state of cloud native security report, entitled “Watching the Honeypots”, the Twistlock research team set up honeypots with the goal of detecting patterns of attack on open servers and identifying vulnerabilities that are being actively exploited in the wild.
Key findings include:
- Surveying the top cloud native applications, 25 percent were running with CVEs where a known exploit exists.
- MySQL was the most likely to be out of date, with over 80 percent of deployments being at least one version behind. Overall, 60 percent of all cloud native apps are not patched to the latest version.
- Over 90 percent of detected attacks were automatically executed – zero touch hacking that focuses on brute force or known exploits.
- China plays a significant role in the modern threat landscape with over 60 percent of detected attacks against cloud native applications originated from Chinese IP ranges.