The NSA shares guidance that misconfigurations are the most prevelent cloud security issue plaguing organizations, rather than a direct weakness in security architecture itself.

https://redmondmag.com/articles/2020/02/05/nsa-updates-cloud-security-guidance.aspx

https://media.defense.gov/2020/Jan/22/2002237484/-1/-1/0/CSI-MITIGATING-CLOUD-VULNERABILITIES_20200121.PDF

The biggest cloud security issue plaguing organizations is misconfigurations, according to the National Security Agency (NSA), which recently published a security report titled “Mitigating Cloud Vulnerabilities.”    Misconfigured cloud settings have caused multiple incidents of data exposures from the Amazon Web Services (AWS) cloud in recent years. Most recently, a misconfiguration error in Microsoft’s Azure cloud exposed 250 million technical support accounts. In fact, the NSA report is dated Jan. 22, the same day that Microsoft publicized the Azure data exposure.