Author here - sorry you feel like this is content marketing. I identify myself as a cloud security engineer, so that's a clear antigoal. The intent is to show what's the systematic adoption of cloud security controls _that matter_, based on real-world data breaches. We also published a follow-up post[1] with actionable advice for practitioners on how to turn on some of these mechanisms (such as S3 Public Access Block).

Would love to hear your thoughts on how we can make it "deeper" and "more accurate" in the future!

[1]: https://securitylabs.datadoghq.com/articles/state-of-aws-clo...