VendorsGoogle Cloud
Google Cloud
Cybersecurity reports and statistics published by Google Cloud
8 categories3 reports
Research Reports
Reports and publications from Google Cloud
Recent Statistics & Reports
Exposed sensitive UI or APIs fell from 11.8% in H1 to 4.9% in H2.
5/27/2026•
Exposed Sensitive UIExposed APIs
Initial access by threat actors using misconfiguration, which accounted for 29.4% of incidents in the first half of 2025, dropped to 21% in H2 2025.
5/27/2026•
Initial AccessMisconfiguration
RCE increased nearly five-fold from 2.9% in H1 to 13.6% in H2
5/27/2026•
RCE
In 35% of cases where data exfiltration occurred, the malicious insider absconded with data through multiple paths such as a combination of email and cloud or USB storage device and cloud.
5/27/2026•
Data Exfiltration
7% of cybersecurity intrusions investigated resulted from actors gaining access through improperly configured application and infrastructure assets.
5/27/2026•
Misconfiguration
21% of cybersecurity intrusions investigated involved actors leveraging stolen human and non-human identities for initial access.
5/27/2026•
Identity
21% of cybersecurity intrusions investigated involved compromised trusted relationships with third-parties.
5/27/2026•
Third Party Risk
17% of phishing cases involved voice-based social engineering (vishing).
5/27/2026•
PhishingVishingInitial Access
When malicious insiders used personally controlled cloud services to exfiltrate data, 12% of those malicious insiders used multiple cloud storage services, including Google Drive, Dropbox, Microsoft OneDrive, and Apple iCloud.
5/27/2026•
CloudCloud Storage Services
Threat actors exploited third-party software-based entry (44.5%) more frequently than weak credentials—a significant increase from the 2.9% observed in H1 2025.
5/27/2026•
Third Party RiskCredentials
10% of intrusions investigated involved Business Email Compromise (BEC), with actors targeting banking details for wire and deposit fraud.
5/27/2026•
BEC
Software supply chain compromises accounted for 3% of cybersecurity intrusions investigated.
5/27/2026•
Software Supply Chain
28% of intrusions investigated resulted in data theft that bore indications of extortion.
5/27/2026•
Data TheftExtortion
45% of intrusions resulted in data theft without immediate extortion attempts at the time of the engagement
5/27/2026•
Data Theft
2% of cybersecurity intrusions investigated involved vulnerability exploitation.
5/27/2026•
Vulnerability Exploitation
Threat actors targeted data in 73% of cloud-related incidents.
5/27/2026•
DataCloud Attack
Threat actors exploited identity issues to gain initial access in 83% of the incidents involving major cloud and SaaS-hosted environments.
5/27/2026•
Identity Initial AccessCloud
Data privacy and security are among the top three LLM provider considerations for 37% of respondents, followed by integration with existing systems and cost.
9/4/2025•
AILLMPrivacy
The most common cross-industry applications for AI agents reported in the study include security operations and cybersecurity (46%).
9/4/2025•
AIAgentic AISecurity operations
40% of agentic AI early adopters saw a good return on strengthening security operations, compared to only 30% of average users.
9/4/2025•
AIAgentic AIROI
Showing 1-20 of 51 results