Aqua News

According to new research conducted by Aqua Security’s Team Nautilus, cloud technologies now play a role in the digital side of the conflict. The team has tracked code and tools in public repositories, including Docker container images, code libraries, and popular software packages such as PyPI, npm, and Ruby.

Dirty Pipe “could enable an attacker to effectively modify containers that are running against a shared image, or to poison an image on a host so that new containers would receive modified files,” researcher Rory McCune from cloud security firm Aqua Security said in a blog post.

BOSTON — March 9, 2022 — Aqua Security, the leading pure-play cloud native security provider, today announced that it has joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment . Aqua offers the first and only integrated cloud native …

In November 2021, cloud native security firm Aqua disclosed details of a cryptocurrency mining campaign that used the exact same container escape technique to drop the XMRig coin miner on infected hosts, making it the first recorded instance of real-world exploitation.

Eran Orzel is Senior Director of Argon Customers and Sales, at Argon Security, a recent acquisition by Aqua Security. He speaks to Sarah Schlothauer at JAXenter.com on the rise in software supply chain attacks, how to keep open source code free from vulnerabilities, and more.

Anaïs Urlichs, Developer Advocate at Aqua Security, discusses International Women’s Day and closing the gender gap in technology.

Knowledge is power, and here at Aqua, we keep updating you with news and trends in the cloud native community. CNCF released the annual Cloud Native Survey – with plenty of findings and stats that are worth diving into. If you’re looking to tackle Kubernetes at scale, check out the insightful story of how PayPal scaled their Kubernetes clusters to …

According to a study released last month by Argon, an Aqua Security Company, attacks on the software supply chain grew by more than 300% compared to 2020.