Cloud Under Siege: Advanced Persistent Threats and the Next Evolution of Cloud-Centric Cyber Warfare

As cloud adoption accelerates, APTs are rapidly adapting to exploit cloud-native environments. High-impact attacks increasingly target IAM, cloud storage, virtual machines, containers, and serverless platforms—marking a tactical shift for nation-state actors and cybercriminal groups. This session provides an in-depth analysis of APT groups such as Antique Typhoon, Silk Typhoon, and APT29, focusing on their abuse of misconfigurations, identity federation, and persistent access techniques that evade traditional controls. Attendees will gain insights into emerging tactics including AI-powered reconnaissance, autonomous lateral movement, and malware that adapts to security defenses in real time. We will also present actionable defense strategies—highlighting playbooks, detection engineering approaches, and automated response using SOAR, MITRE ATT&CK for Cloud, and native tooling. This session equips defenders with the intelligence and tools to combat modern cloud-centric APTs.