Aqua Security today added container threat analysis to its Cloud Native Security Platform and Cloud Security Posture Management products.
The new product, Dynamic Threat Analysis (DTA), protects containerized applications from image-based malware by automatically running images in a secure sandboxed environment. It then analyzes image runtime behavior and checks for anomalies and can perform forensics after a suspected incident. And if the image does contain malware, the sandbox prevents it from infecting workloads and resources on the host or network.
Aqua’s threat hunting team started seeing an uptick in sophisticated malware attacks targeting containers a little over a year ago, said Rani Osnat, VP of strategy at Aqua Security. “Their aim is to attack commercial applications, commercial infrastructure, for monetary gain,” he said. “And the way they do that, they try to run cryptocurrency miners, which is relatively easier to do with containers because the stakes are quite low.”
