Fileless attacks surge as cybercriminals evade cloud security defenses
Based on analysis by Aqua Nautilus researchers of 700,000 real-world attacks, the report covers three key areas: software supply chain, risk posture (including vulnerabilities and misconfigurations), and runtime protection.
The agent vs agentless debate is over
According to Aqua CEO Dror Davidoff, “Two years ago, ‘agentless security’ stormed the market with claims of greatness ‘ding dong the agents are dead!’. It is only now that we see vendors admitting agentless provides only visibility, not cloud security.”
Aqua Nautilus Research Finds 1,400% Surge in Memory-Based Attacks as Hackers Evade Traditional Cloud Security Defenses
BOSTON—June 27, 2023—Aqua Security, the pioneer in cloud native security, today published its 2023 Cloud Native Threat Report, which summarizes research and observations by Aqua Nautilus threat researchers. Based on analysis of actual attacks in the wild, the report provides security practitioners insight into threat actors’ changing tactics, techniques and procedures in order to better …
Millions Face RepoJacking Risk on GitHub Repositories
According to an advisory published by Aqua Security Software, the discovered repojacking attack allows threat actors to execute code within organizations’ internal environments or their customers’ environments.
Millions of Repos on GitHub Are Potentially vulnerable to Hijacking
What Aqua discovered was twofold: millions of such repositories — including those belonging to companies such as Google and Lyft — are present on GitHub; and tools are easily available to attackers to find these repos and hijack them.
Alert: Millions of GitHub Repositories Likely Vulnerable to RepoJacking Attack
“When a repository owner changes their username, a link is created between the old name and the new name for anyone who downloads dependencies from the old repository,” researchers Ilay Goldman and Yakir Kadkoda said. “However, it is possible for anyone to create the old username and break this link.”
More than a third of UK organisations believe inadequate software supply chain security is the biggest security risk
Aqua Security, the pioneer in cloud native security, has announced the results of a new study which reveals that, whilst UK firms are realising the benefits of cloud native security, the software supply chain has become a top security concern for them.
More than a third of UK organisations believe inadequate software supply chain security is the biggest security risk to their business, reveals new Aqua Security study
LONDON – June 14, 2023 – Aqua Security, the pioneer in cloud native security, has announced the results of a new study which reveals that, whilst UK firms are realising the benefits of cloud native security, the software supply chain has become a top security concern for them. The survey was conducted at Cloud Expo …
- Empowering Security: Bridging Talk to Action at RSA 2024 April 18, 2024
- CVE-2024-3094: Newly Discovered Backdoor in XZ tools April 1, 2024
- Cloud Workload Security: Aqua Shines in GigaOm’s Radar Report March 26, 2024
- Aqua: Leading the Charge in Container Security Innovation March 13, 2024
- Elevating Security: Protecting Containerized Workloads on Mainframes March 6, 2024
- Lucifer DDoS botnet Malware is Targeting Apache Big-Data Stack February 21, 2024