“A key takeaway for open source projects that rely on AWS is to ensure they don’t use predictable bucket names,” says Yakir Kadkoda, lead security researcher with Aqua. “They should provide an option for users to modify the bucket name that the open source project creates for its operation or implement a check on the …
Bug hunters at Aqua spotted the CDK issue on June 27, according to the firm’s security researchers Ofek Itach and Yakir Kadkoda. About two weeks later, the cloud giant patched the flaw with CDK version v2.149.0.
London – October 14, 2024 – Aqua Security, the pioneer in cloud native security, today announced its Cloud Native Security Platform has been named Best Cloud Native Product at the Computing Cloud Excellence Awards 2024. The Computing Cloud Excellence Awards recognise the best of the UK’s cloud computing industry, highlighting the most innovative and compelling …
BOSTON, Oct. 10, 2024 – Aqua Security, the pioneer in cloud native security, today announced that it has been honored as the winner of the “Enterprise Cloud Security Solution Provider of the Year” award in the 8th annual CyberSecurity Breakthrough Awards program. The awards are given by CyberSecurity Breakthrough, a leading independent market intelligence organization. Aqua was …
Aqua Security in May debuted the latest enhancement to its “code to cloud” security offering with the launch of protection for LLM-based applications.
Called Perfctl, the malware was recently spotted by cybersecurity researchers from Aqua Security, who claim it has been around since at least 2021, and has so far infected thousands of Linux endpoints.
The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the internet potential targets, researchers from Aqua Security said.
BOSTON—September 16, 2024—Aqua Security, the pioneer in cloud native security, today announced VEX Hub, a vendor neutral repository for VEX (Vulnerability Exploitability eXchange). VEX is a new industry standard for communicating and sharing information on security vulnerabilities for software artifacts, and VEX Hub now provides users and software maintainers a single library of vulnerability information …