Aqua News

Contact Aqua PR

Kubernetes clusters under attack in hundreds of organizations

August 8, 2023

Kubernetes (K8s) clusters belonging to more than 350 organizations, open-source projects, and individuals have been detected as openly accessible and unprotected. That’s according to new findings from Aqua Security following a three-month-long investigation by its research team, Nautilus. 

Read more

Addressing supply chain security compliance obligations

August 8, 2023

Aqua’s Eilon Elhadad weighs in on software supply chain security.  

Read more

Aqua Nautilus Researchers Find Kubernetes Clusters Under Attack in Hundreds of Organizations

August 8, 2023

BOSTON—August 8, 2023—Aqua Security, the pioneer in cloud native security, today announced a three-month-long investigation by its research team. Aqua Nautilus uncovered Kubernetes clusters belonging to more than 350 organizations, open-source projects, and individuals, were openly accessible and unprotected. A notable subset of clusters was connected to vast conglomerates and Fortune 500 companies. At least …

Read more

Aqua Security unveils AI-guided remediation for vulnerability response

August 3, 2023

Cloud native security provider Aqua Security has announced enhancement of the Aqua cloud security platform with the availability of AI-guided remediation capabilities.

Read more

Aqua Security Unveils AI-Guided Remediation for Lightning-Fast Vulnerability Response

August 1, 2023

Boston—August 1, 2023—Aqua Security, the pioneer in cloud native security, today announced enhancement of the Aqua Cloud Security Platform with the availability of AI-Guided Remediation capabilities. Now overburdened security teams can better operationalize risk findings to rapidly reduce risk and help developers quickly fix issues.  According to the Cybersecurity and Infrastructure Security Agency, adversaries exploit …

Read more

Unpatched Apache Tomcat servers spread Mirai botnet malware

July 28, 2023

The Nautilus researchers’ analysis established the threat actors were specifically targeting misconfigurations in the Tomcat web application manager app which allows users to manage deployed web applications. 

Read more

AWS Cloud Credential Stealing Campaign Spreads to Azure, Google Cloud

July 17, 2023

The findings add to the research from Aqua Security that recently showed malicious activity targeting public-facing Docker and JupyterLab APIs. Aqua researchers attributed the activity — with a high level of confidence — to TeamTNT. 

Read more

TeamTNT’s Cloud Credential Stealing Campaign Now Targets Azure and Google Cloud

July 14, 2023

They also overlap with an ongoing TeamTNT campaign disclosed by Aqua called Silentbob that leverages misconfigured cloud services to drop malware as part of what’s said to be a testing effort, while also linking SCARLETEEL attacks to the threat actor, citing infrastructure commonalities. 

Read more