Broad cloud permissions allow an attacker to provision miners, expand instances, and hide cost growth inside normal administration activity. When the role can create infrastructure freely, cryptojacking becomes a scaling problem rather than a single-host infection. Least privilege must limit resource creation, not only data access.
Why This Matters for Security Teams
Cloud roles that can create instances, attach policies, or provision storage without constraint turn ordinary admin access into an abuse path for cost blowouts, lateral movement, and hidden persistence. The issue is not simply “too many permissions”; it is that workload entitlements often exceed the task being performed. That mismatch is exactly where cryptojacking and infrastructure sprawl become operational problems rather than isolated incidents.
For non-human identities, the right baseline is narrower than most teams assume. The OWASP Non-Human Identity Top 10 treats over-privileged machine access as a core control failure, and NHI Management Group has repeatedly documented how broad workload permissions create real-world exposure, including the Codefinger AWS S3 ransomware attack pattern where infrastructure-level access becomes the attack surface. In practice, many security teams encounter runaway cloud cost only after an attacker has already treated their automation role as a free provisioning account, rather than through intentional abuse testing.
How It Works in Practice
Least privilege for cloud workloads must constrain what the identity can do, not just what data it can read. If a workload only needs to write objects to one bucket, it should not be able to launch compute, create service accounts, edit billing-linked resources, or attach broader IAM policies. The operational goal is to make abuse paths expensive to chain, not merely harder to detect.
Current guidance suggests combining static policy boundaries with runtime checks. That means:
- Define a workload role for the exact service, environment, and action set.
- Use short-lived credentials rather than long-lived keys wherever possible.
- Separate deployment privileges from runtime privileges.
- Log and alert on any action outside the workload’s expected envelope.
- Continuously review entitlements against actual API calls and resource creation.
This is where workload identity matters. The SPIFFE workload identity specification helps bind privileges to cryptographic workload identity instead of shared secrets, which aligns with NHIMG guidance in the Guide to SPIFFE and SPIRE. That matters because broad cloud permissions are often paired with static secrets or inherited roles, and those are easy to reuse once an attacker reaches one host. The better model is a task-scoped identity with time-limited access and policy evaluation at request time, not a standing role that can provision infrastructure indefinitely. These controls tend to break down in heavily automated multi-account estates because service owners copy working roles forward faster than governance teams can re-baseline them.
Common Variations and Edge Cases
Tighter cloud permissions often increase deployment friction, requiring organisations to balance operational speed against abuse resistance. That tradeoff is real, especially in platform teams that support ephemeral test environments, CI/CD pipelines, or burstable analytics jobs. Current guidance suggests treating those cases as exceptions that require explicit time limits and separate approval, not as reasons to widen the default role.
There is no universal standard for how broad a workload role may be, but best practice is evolving toward intent-based access: the workload gets permission only for the specific action it is expected to perform right now. That approach is especially important for agentic systems and autonomous jobs, where tool use can expand rapidly and unpredictably. NHI Management Group has also noted the wider challenge in machine identity governance, including that 57% of organisations lack a complete inventory of their machine identities and 53% have experienced a security incident directly related to machine identity management failures.
Edge cases also appear in shared platform roles, legacy automation, and cross-cloud migration tooling. In those environments, teams often preserve broad permissions temporarily and never come back to reduce them. That is when a cost anomaly becomes a security event, because the same role that enables normal operations can be abused to scale compute, hide spend, and persist inside routine administration activity.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 and OWASP Agentic AI Top 10 address the attack and risk surface, while NIST AI RMF set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| OWASP Non-Human Identity Top 10 | NHI-01 | Over-privileged machine roles are a primary NHI weakness. |
| OWASP Agentic AI Top 10 | A-03 | Autonomous tool use can widen privileges beyond intent. |
| NIST AI RMF | Broad workload permissions increase operational and misuse risk. |
Use AI risk governance to define limits, monitoring, and escalation paths for autonomous workloads.
Related resources from NHI Mgmt Group
- How should teams secure non-human identities across cloud and SaaS?
- What breaks when cloud identities can create, update, and delete the same workload service?
- What breaks when AI agents get the same cloud permissions as human operators?
- What breaks when cloud workload protection stops at vulnerability scanning?
Deepen Your Knowledge
Reviewed and updated by the NHIMG editorial team on June 23, 2026.
NHI Mgmt Group — the #1 independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org
