Aqua News

“[The hack] highlights the need for secure development processes, SAST and DAST scans, secret scans, etc. It is also a good reminder that organizations should treat their code as if it were open source, and if their code is exposed, then minimal damage will occur,” according to Yakir Kadkoda, Lead Security Researcher at Aqua Security.

BOSTON — March 24, 2022 — Aqua Security, the leading pure-play cloud native security provider, today announced it has released the industry’s most robust set of cloud native security icons. Available in the Aquasec GitHub repository and The Noun Project, the library of more than 200 free icons is part of an effort to standardize …

VentureBeat chose 10 of the current security unicorns to highlight. Criteria is that they’re reporting strong growth; they’re in a fast-growing market; and that the editor had the chance to interview their CEO or president in recent months, giving him a sense of their strategy, differentiators and traction with customers.

This article featuring Aqua looks at the best commercial and open source DevSecOps tools and what to consider when evaluating DevSecOps solutions.

According to new research conducted by Aqua Security’s Team Nautilus, cloud technologies now play a role in the digital side of the conflict. The team has tracked code and tools in public repositories, including Docker container images, code libraries, and popular software packages such as PyPI, npm, and Ruby.

Dirty Pipe “could enable an attacker to effectively modify containers that are running against a shared image, or to poison an image on a host so that new containers would receive modified files,” researcher Rory McCune from cloud security firm Aqua Security said in a blog post.

BOSTON — March 9, 2022 — Aqua Security, the leading pure-play cloud native security provider, today announced that it has joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment . Aqua offers the first and only integrated cloud native …

In November 2021, cloud native security firm Aqua disclosed details of a cryptocurrency mining campaign that used the exact same container escape technique to drop the XMRig coin miner on infected hosts, making it the first recorded instance of real-world exploitation.