A new report from Check Point Software Technologies Ltd. (NASDAQ: CHKP) exposes critical vulnerabilities in enterprise cloud security, with 65% of organizations reporting cloud-related security incidents in the past year, up from 61% in 2024.
Alarmingly, only 9% detected these breaches within the first hour, and just 6% resolved them in that time, according to the 2025 Cloud Security Report, based on a survey of 937 CISOs and IT leaders worldwide.
The report highlights the strain on security teams as cloud adoption surges, with 62% of organizations using cloud edge technologies, 57% operating in hybrid cloud environments, and 51% leveraging multi-cloud setups. Legacy defenses are faltering, exacerbated by tool sprawl: 71% of respondents use over 10 cloud security tools, and 16% manage more than 50, leading to alert fatigue with over half facing nearly 500 daily alerts.
AI-driven threats are a growing concern, with 68% prioritizing AI in cyber defense but only 25% prepared to counter such attacks. Visibility is another weak point, as only 17% have full insight into lateral movement in cloud environments, allowing attackers to move undetected. Detection often depends on employees or external reports, with just 35% of incidents identified by security platforms.
“Security teams are struggling with complex cloud environments and evolving AI threats,” said Paul Barbosa, Check Point’s VP of Cloud Security. “Fragmented tools and outdated approaches can’t keep up. Unified, automated defenses are essential.”
Internal challenges, including rapid technological change (54%), skill shortages (49%), and poor tool integration (40%), further hinder progress. Check Point recommends consolidating tools, adopting AI-powered detection, and using real-time telemetry to enhance visibility. Its CloudGuard and Infinity Platform aim to streamline defenses and automate responses across cloud environments.
Deryck Mitchelson, Check Point’s Global CISO, cautioned, “Attackers act in minutes, while defenders take days. CISOs must unify platforms and prepare for AI threats to secure the cloud.”
Conducted by Cybersecurity Insiders in early 2025, the report offers actionable strategies for securing hybrid, multi-cloud, and SaaS environments. It is available on Check Point’s website.
