The Cloud Security Alliance’s (CSA) Cloud Adversarial Vectors, Exploits, and Threats (CAVEaT™) is an emerging, cloud-centric threat matrix designed to address the unique and rapidly evolving security risks in cloud environments.
Released in November 2023 through a collaboration with MITRE, CAVEaT™ builds on existing frameworks like CVE, CWE, MITRE ATT&CK, and CAPEC but focuses specifically on cloud-specific adversarial behaviors, attack vectors, and exploits.
It aims to provide detailed, actionable security guidance for detection and mitigation tailored to cloud service providers such as AWS, Azure, and Google Cloud, helping practitioners anticipate and counter both known and emerging threats before they become widely observed. The initiative also emphasizes industry collaboration for ongoing discovery, validation, and sharing of cloud threat intelligence, offering standardized data in STIX format for interoperability and integration with other cybersecurity tools. Overall, CAVEaT™ seeks to close the knowledge gap caused by the fast pace of cloud technology evolution by delivering timely, threat-informed defense strategies specifically for cloud ecosystems.