Aqua News

How digital transformation is changing the role of the CISO

February 23, 2021

Digital transformation has become a key initiative for many enterprises, facilitated by the emergence of easy-to-use cloud-native technologies such as containers and Kubernetes. This year, the COVID-19 outbreak has pushed enterprises even further to accelerate their digital journeys. As they do this, security is constantly raised as a key concern, but it should also be viewed as […]

Read more

Container, Serverless & Cloud Native Security Flash – February 2021

February 12, 2021

While it’s the shortest month of the year, there’s no shortage of news and activity in cloud native security. Open Policy Agent (OPA) project has graduated at CNCF, demonstrating the growing adoption of policy enforcement tools in cloud native deployments. On a threat front, a serious privilege escalation vulnerability (CVE-2021-3156) was found in sudo, and the attacks move up […]

Read more

Cloud Native Apps Make Software Supply Chain Security More Important Than Ever

February 11, 2021

Aqua Security’s research team, Nautilus, recently revealed that several SaaS services used by container developers are susceptible to cryptocurrency mining. While the risks are real, organizations will not stop using open source software. The efficiency benefits are too great to simply go back and write software from scratch. Open source is here to stay.

Read more

The 20 Coolest Cloud Security Vendors Of The 2021 Cloud 100

February 2, 2021

Aqua Security in April debuted Dynamic Threat Analysis to defend container-based environments from sophisticated malware that can only be detected using dynamic analysis of a running container. Six months later, the company debuted new Kubernetes-native security capabilities to secure applications that run on Kubernetes across the development, deployment and runtime phases of the application life […]

Read more

Attacks move up the supply chain: 7 ways to secure your open source

January 26, 2021

Tsvi Korren, field CTO of application security company Aqua Security, recommended laying down rules for developers for using open-source components. “An organization can say it’s okay to use open-source components, but you need components that have had a commit in the last three months or a project that has more than 10 maintainers so it isn’t […]

Read more

Container, Serverless & Cloud Native Security Flash – January 2021

January 12, 2021

Happy New Year! For us in cloud native industry, 2021 promises to be an exciting one. As companies accelerate their digital transformation, security will be more critical than ever. There’s a lot to look forward to – starting this month, KubeSec Enterprise Summit will bring together industry thought leaders and discuss all things cloud native […]

Read more

What are Supply Chain Attacks, and How to Guard Against Them

January 12, 2021

One lesson data centers should not take away from the SolarWinds breach is that installing supplier patches is a bad idea. The attack did compromise the automated software update system, but it’s a lot more dangerous to leave known vulnerabilities in your systems, said Tsvi Korren, field CTO at Aqua Security. “It requires some painstaking […]

Read more

Creating a culture of cybersecurity and tech innovation

January 11, 2021

Cloud native technologies have the potential to truly change the way we access and secure applications, but the success of this relies on the people and processes in place to handle the roll out of these technologies. This requires appropriate leadership, and decision makers within an organisation who demonstrate robust cloud security leadership are more […]

Read more