The 2025 State of Cloud Security study reveals key insights into the security practices of organizations using AWS, Azure, and Google Cloud, highlighting the persistent challenges and emerging strategies in cloud security. The study found that many organizations manage multi-account environments via AWS Organizations but often lack centralized control when adopting data perimeters, leading to risks from long-lived cloud credentials and lagging adoption of security measures like IMDSv2 on EC2 instances. Recommendations include using AWS multi-account architecture with guardrails, implementing data perimeters, minimizing long-lived credentials, enforcing IMDSv2, and setting guardrails against public access in cloud storage services. Datadog Cloud Security offers tools to enhance security posture by providing centralized visibility, identifying misconfigurations, and suggesting remediation steps for risky cloud identities and workloads. Despite strides in adopting secure-by-default mechanisms and refining IAM permissions, many cloud environments remain vulnerable to exploits, underscoring the importance of deliberate configuration and management to protect against potential attacks.