Datadog's 2025 State of Cloud Security Report Finds Companies Adopting Data Perimeters Amid Growing Concerns of Credential Theft
Datadog (NASDAQ: DDOG) released the 2025 State of Cloud Security report on October 8, 2025, analyzing thousands of cloud customers across AWS, Azure and Google Cloud.
Key findings: 40% of organizations use data perimeters (commonly via S3 bucket and VPC endpoint policies); 86% use multi-account setups within an AWS Organization and 70% have all accounts inside an Organization. Credential risk remains high: 59% of AWS IAM users, 55% of Google Cloud service accounts, and 40% of Microsoft Entra ID applications had access keys older than one year.
The report stresses stronger access controls and continuous verification to reduce credential-theft risk.
Datadog (NASDAQ: DDOG) ha pubblicato il rapporto 2025 State of Cloud Security l'8 ottobre 2025, analizzando migliaia di clienti cloud su AWS, Azure e Google Cloud.
Principali risultati: il 40% delle organizzazioni usa perimetri di dati (solitamente tramite policy di bucket S3 e di endpoint VPC); l'86% utilizza configurazioni multi-account all'interno di un AWS Organization e il 70% ha tutti gli account all'interno di un'Organizzazione. Il rischio di credenziali rimane elevato: il 59% degli utenti IAM di AWS, il 55% dei service account di Google Cloud e il 40% delle applicazioni Microsoft Entra ID avevano chiavi di accesso più vecchie di un anno.
Il rapporto sottolinea controlli di accesso più rigorosi e verifica continua per ridurre il rischio di furto di credenziali.
Datadog (NASDAQ: DDOG) publicó el informe 2025 State of Cloud Security el 8 de octubre de 2025, analizando a miles de clientes de nube en AWS, Azure y Google Cloud.
Hallazgos clave: el 40% de las organizaciones utiliza perímetros de datos (comúnmente mediante políticas de buckets S3 y endpoints VPC); el 86% utiliza configuraciones de múltiples cuentas dentro de una AWS Organization y el 70% tiene todas las cuentas dentro de una Organization. El riesgo de credenciales permanece alto: el 59% de los usuarios IAM de AWS, el 55% de las cuentas de servicio de Google Cloud y el 40% de las aplicaciones de Microsoft Entra ID tenían claves de acceso mayores a un año.
El informe enfatiza controles de acceso más estrictos y verificación continua para reducir el riesgo de robo de credenciales.
Datadog (NASDAQ: DDOG)는 2025년 클라우드 보안 상태 보고서를 2025년 10월 8일 발표했으며, AWS, Azure, Google Cloud의 수천 개 클라우드 고객을 분석했습니다.
주요 발견: 40%의 조직은 데이터 경계(주로 S3 버킷 정책 및 VPC 엔드포인트 정책)를 사용합니다; 86%는 AWS Organization 내에서 다계정 구성을 사용하고 70%는 Organization 내 모든 계정을 보유합니다. 자격 증명 위험은 여전히 높습니다: AWS IAM 사용자의 59%, Google Cloud 서비스 계정의 55%, Microsoft Entra ID 응용 프로그램의 40%의 접근 키가 1년 이상된 상태였습니다.
보고서는 자격 증명 도난 위험을 줄이기 위해 더 강력한 접근 제어와 지속적인 검증을 강조합니다.
Datadog (NASDAQ: DDOG) a publié le rapport 2025 State of Cloud Security le 8 octobre 2025, analysant des milliers de clients cloud sur AWS, Azure et Google Cloud.
Principales conclusions : 40% des organisations utilisent des périmètres de données (généralement via les politiques de seaux S3 et les points de terminaison VPC) ; 86% utilisent des configurations multi-comptes au sein d'une AWS Organization et 70% ont tous les comptes dans une Organization. Le risque lié aux identifiants reste élevé : 59% des utilisateurs IAM d'AWS, 55% des comptes de service Google Cloud et 40% des applications Microsoft Entra ID avaient des clés d'accès datant de plus d'un an.
Le rapport insiste sur des contrôles d'accès plus stricts et une vérification continue pour réduire le risque de vol d'identifiants.
Datadog (NASDAQ: DDOG) veröffentlichte am 8. Oktober 2025 den Bericht 2025 State of Cloud Security und analysierte Tausende von Cloud-Kunden auf AWS, Azure und Google Cloud.
Zentrale Ergebnisse: 40% der Organisationen verwenden Datenperimeter (in der Regel über S3-Bucket- und VPC-Endpunkt-Richtlinien); 86% nutzen Multi-Account-Setups innerhalb einer AWS Organization und 70% haben alle Konten innerhalb einer Organization. Das Credential-Risiko bleibt hoch: 59% der AWS IAM-Benutzer, 55% der Google Cloud Service-Konten und 40% der Microsoft Entra ID-Anwendungen hatten Zugriffsschlüssel, die älter als ein Jahr waren.
Der Bericht betont stärkere Zugriffskontrollen und kontinuierliche Verifikation, um das Risiko von Credential-Diebstahl zu senken.
Datadog (NASDAQ: DDOG) أصدر تقرير حالة أمان السحابة 2025 في 8 أكتوبر 2025، يحلل آلاف عملاء السحابة عبر AWS وAzure وGoogle Cloud.
النتائج الرئيسية: 40% من المؤسسات تستخدم محاور البيانات (عادةً عبر سياسات دلو S3 ونقاط نهاية VPC)؛ 86% تستخدم إعدادات عدة حسابات داخل AWS Organization و70% لديها جميع الحسابات داخل Organization. مخاطر الاعتماد ما زالت عالية: 59% من مستخدمي AWS IAM، و55% من حسابات الخدمات في Google Cloud، و40% من تطبيقات Microsoft Entra ID كان لديها مفاتيح وصول أقدم من عام واحد.
يؤكد التقرير على ضوابط وصول أقوى والتحقق المستمر للحد من مخاطر سرقة الاعتماد.
Datadog (NASDAQ: DDOG) 发布了 2025 年云安全现状 报告,时间为 2025 年 10 月 8 日,分析了 AWS、Azure 和 Google Cloud 的数千名云客户。
关键发现:40% 的组织使用数据边界(通常通过 S3 桶策略和 VPC 端点策略实现);86% 在 AWS 组织中使用多账户设置,70% 的账户都在一个组织内。凭据风险仍然很高:59% 的 AWS IAM 用户、55% 的 Google Cloud 服务账户,以及 40% 的 Microsoft Entra ID 应用的访问密钥年龄超过一年。
报告强调更强的访问控制和持续验证,以降低凭据窃取风险。
- 40% of organizations adopted data perimeters
- 86% use multi-account within an AWS Organization
- 70% have all accounts enrolled in an AWS Organization
- 59% of AWS IAM users had access keys older than one year
- 55% of Google Cloud service accounts had access keys older than one year
- 40% of Microsoft Entra ID applications had access keys older than one year
Although data perimeters are considered an advanced practice, over one-third of organizations have already adopted them
New York, New York--(Newsfile Corp. - October 8, 2025) - Datadog, Inc. (NASDAQ: DDOG), the monitoring and security platform for cloud applications, today announced the 2025 version of its State of Cloud Security report. In it, Datadog found that newer strategies—such as data perimeters and centrally managed multi-account environments—are growing in popularity.
Datadog's report analyzes security posture data from a sample of thousands of organizations that use AWS, Azure or Google Cloud. In its research, Datadog found that
Another strategy teams are employing to reduce security risk is multi-account environments. Enforcing minimal privileges in a single account is challenging, which is why centrally managing multiple accounts through AWS Organizations has become a security best practice. This approach enables teams to enforce security invariants across all accounts with top-down guardrails. Datadog found that adoption of platforms like Organizations is widespread—
Part of the reason teams are implementing new security strategies is that credential theft remains a major attack vector, a problem that is exacerbated by long-lived credentials that never expire and frequently get leaked in source code, container images, build logs and applications artifacts. This year,
"Every identity—human or machine—represents a potential entry point to our critical data," said Emilio Escobar, CISO at Datadog. "Strong access controls and continuous verification aren't just security features; they're foundational to protecting our assets in today's borderless environment."
Datadog's 2025 State of Cloud Security is available now—read the full report here. To learn more about how Datadog helps companies secure their cloud environments, visit: https://www.datadoghq.com/product/cloud-security/.
About Datadog
Datadog is the observability and security platform for cloud applications. Our SaaS platform integrates and automates infrastructure monitoring, application performance monitoring, log management, user experience monitoring, cloud security and many other capabilities to provide unified, real-time observability and security for our customers' entire technology stack. Datadog is used by organizations of all sizes and across a wide range of industries to enable digital transformation and cloud migration, drive collaboration among development, operations, security and business teams, accelerate time to market for applications, reduce time to problem resolution, secure applications and infrastructure, understand user behavior and track key business metrics.
Forward-Looking Statements
This press release may include certain "forward-looking statements" within the meaning of Section 27A of the Securities Act of 1933, as amended, or the Securities Act, and Section 21E of the Securities Exchange Act of 1934, as amended including statements on the benefits of new products and features. These forward-looking statements reflect our current views about our plans, intentions, expectations, strategies and prospects, which are based on the information currently available to us and on assumptions we have made. Actual results may differ materially from those described in the forward-looking statements and are subject to a variety of assumptions, uncertainties, risks and factors that are beyond our control, including those risks detailed under the caption "Risk Factors" and elsewhere in our Securities and Exchange Commission filings and reports, including the Quarterly Report on Form 10-Q filed with the Securities and Exchange Commission on August 8, 2025, as well as future filings and reports by us. Except as required by law, we undertake no duty or obligation to update any forward-looking statements contained in this release as a result of new information, future events, changes in expectations or otherwise.
Contact
Dan Haggerty
press@datadoghq.com
To view the source version of this press release, please visit https://www.newsfilecorp.com/release/269475
FAQ
What did Datadog's 2025 State of Cloud Security report find about data perimeter adoption?
How common is multi-account management within AWS according to Datadog's 2025 report?
What credential-age risks did Datadog report on October 8, 2025 for DDOG customers?
What security practices did Datadog recommend in the 2025 State of Cloud Security report?
When was Datadog's 2025 State of Cloud Security report published and where can investors read it?
