Meet Tamnoon at RSAC 2026 Learn More

Millions

of alerts came in.
A lot fewer made it through.

Here’s how the year really played out at Tamnoon.

0 M

Alerts Showed Up

From every corner of the cloud.

0 M

Alerts Resolved

Without opening a thousand tickets.

0

Crown Jewels Protected

The stuff you really care about.

Our cloud security friends

We didn’t do this alone. These were our closest friends based on the number of integrations made.

Let’s talk alert vibes

Some were loud. Others just wanted to be seen.

22.19%

The “Uh Ohs!” (Critical)

26.56%

Probably Needs Attention (High)

28.13%

The Middle Child (Medium)

23.13%

I Guess We’ll Look (Low)

22.19%

The “Uh Ohs!” (Critical)

26.56%

Needs Attention
(High)

28.13%

The Middle Child
(Medium)

23.13%

I Guess We’ll Look
(Low)

And the winners are…

These alerts just wouldn’t leave us alone.

5

213,623

Inline IAM policies attached

3

232,607

Missing IAM role attachment (EC2)

1

441,952

Kubernetes & EKS privilege escalation

2

266,747

Public-facing unpatched cloud instances

4

220,961

VM scale set OS upgrades required

1

213,623

Inline IAM policies attached

2

232,607

Missing IAM role attachment (EC2)

3

441,952

Kubernetes & EKS privilege escalation

4

266,747

Public-facing unpatched cloud instances

5

220,961

VM scale set OS upgrades required

Who topped this year’s cloud security naughty list?

These misconfigurations just kept breaking the rules.

Naughty List

  1. Vulnerability and patch management
  2. Encryption and secure transport
  3. IAM and privilege trust
  4. Network exposure and segmentation
  5. Data exposure and storage configuration
  6. Container and Kubernetes hardening
  7. Identity hardening and authentication
  8. Logging, monitoring, and governance gaps
  9. Asset hygiene and lifecycle issues
  10. Threat detections and response signals

Every month showed up…

But June really took it personally.

[Alerts Resolved by Month]

Meanwhile, at Tamnoon…

a few other things happened, too.

0

Integrations Created

Yes… we like connecting things.

0 +

Teams Supported

Sharing the love.

0

Events Organized

Worth it.

0

Events Attended

That’s a lot of lanyards.

And that’s a wrap on 2025

It was the year of endless alerts, mysterious dashboards, and “quick questions” that were never quick. Somehow, most of the important stuff actually got fixed. Fewer people were dragged into late-night investigations, and the board slides finally told a story everyone could agree on.

And if cloud security stats and trends are your thing, we pulled a lot more of them together in the State of Cloud Remediation report.

Scroll to Top