When AI Writes, Scans and Fixes Code, Runtime Becomes the Last Line of Defense

Aqua Cloud Native Blog \ Tags: Container Security

RUNTIME SECURITY
When AI Writes, Scans and Fixes Code, Runtime Becomes the Last Line of Defense
Anthropic recently launched Claude Code Security. Using its most advanced model, Claude Opus 4.6, the tool found over 500 high-severity vulnerabilities in production open-source codebases. These are bugs with security implications that had survived decades of expert review, continuous fuzzing, and multiple layers of automated scanning. The cybersecurity market reacted badly: roughly $15 billion in …
Read more
RUNTIME SECURITY
Selective Memory Dump Technique for Deeper Container Forensic Analysis
Every attack leaves a trail, but in containerized environments, that trail can vanish before you even realize you have been attacked. Containers are short-lived, and attackers exploit this by executing malware in memory, loading hidden payloads, or deploying rootkits, then silently modifying or deleting evidence to cover their tracks. By the time security teams are …
Read more
CONTAINER SECURITY
A Brief History of Containers: From the 1970s Till Now
When we first published this blog post in 2017, the technology landscape for containers was quite different than it is today. Over the past few years, we have seen significant changes take place that have affected, and continue to affect how Containers are adopted. Read on to understand the changes and developments we saw and …
Read more
VULNERABILITY MANAGEMENT
Patch, Ditch, Dodge, or Deal? Your Call on Vulnerabilities
Security teams are drowning in vulnerabilities. Cloud native environments can generate tens of thousands of new findings every month, even before factoring in CI/CD pipelines and third party dependencies. With this volume, the challenge is not just finding vulnerabilities, it is deciding what to do about them. Fix everything? Impossible. Ignore everything? Risky. The key …
Read more
CONTAINER SECURITY
Aqua Helps Close the DevSec Gap with Shift Left Security
Shifting security left has many benefits. Developers today have more ownership and responsibility for secure coding practices than ever before. However, this does not mean that the entire security burden falls on developers. Cloud native environments evolve rapidly. Teams rely on open source packages, build and deploy containers on demand, and push changes through CI/CD …
Read more
KUBERNETES SECURITY
What Gartner Wants Every CTO to Know About Kubernetes Security
In the new Gartner Top 10 FAQs for CTOs on container and Kubernetes infrastructure report, there’s a strategic planning assumption that “by 2029, more than 95% of global organizations will be running containerized applications in production, which is a significant increase from less than 50% in 2023.” So is that it? Will container and Kubernetes …
Read more
CLOUD SECURITY
Unify to Fortify: Security for AI, Containers, and Every Cloud
Cloud adoption has transformed the enterprise IT landscape, but that transformation has not followed a clean or linear path. Instead of standardizing on a single platform, most organizations now operate across a patchwork of public clouds, private data centers, and legacy systems. Hybrid and multi cloud strategies have become the norm, not by design but …
Read more
CONTAINER SECURITY
What’s Really Happening in Your Containers? Aqua’s Risk Assessment Has the Answer
Containers may be mainstream, but securing them in production remains a moving target. As AI adoption scales and environments grow more complex, so too do the risks, especially at runtime, where traditional tools struggle to provide meaningful visibility. These are not legacy exploits like port scans or brute force attempts. Attackers are targeting what happens …
Read more
SECURITY RESEARCH
Tomcat in the Crosshairs: New Research Reveals Ongoing Attacks
News headlines reported that it took just 30 hours for attackers to exploit a newly discovered vulnerability in Apache Tomcat servers. But what does this mean for workloads relying on Tomcat? Aqua Nautilus researchers discovered a new attack campaign targeting Apache Tomcat. In this blog, we shed light on newly discovered malware that targets Tomcat …
Read more
VULNERABILITY MANAGEMENT
IngressNightmare Vulnerabilities: All You Need to Know
CVE-2025-1974 * CVE-2025-24514 * CVE-2025-1097 * CVE-2025-1098 * CVE-2025-24513
On March 24, 2025, a set of critical vulnerabilities (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974 — collectively referred to as IngressNightmare was disclosed in the ingress-nginx Controller for Kubernetes. These vulnerabilities could lead to a complete cluster takeover by granting attackers unauthorized access to all secrets stored across all namespaces in the Kubernetes cluster.
Read more
CLOUD ATTACKS
Top Cloud Native Threats and Vulnerabilities of 2024
The complexity of cloud environments means that there is a virtually infinite list of potential security risks and vulnerabilities that could arise within cloud infrastructure or workloads. That said, some cloud security threats are more prevalent than others – and knowing which risks and vulnerabilities are trending is key to knowing what to prioritize when …
Read more
CONTAINER SECURITY
GigaOm Radar: Aqua Leads in Container Security
Securing containerized applications demands a multi-layered strategy that spans the entire lifecycle from development to production, a challenge Aqua has spent nearly a decade mastering. Aqua’s Container Security solution provides full lifecycle protection by identifying vulnerabilities early in the build phase, integrating acceptance gates in the CI/CD pipeline to minimize risks, and offering real-time runtime …
Read more
Page 1 of 9123456789Next ›
Need to secure enterprise workloads?
Aqua Cloud Native Application Protection Platform (CNAPP)
Go cloud native with the experts!
Get Demo
Aqua Security is the pioneer in securing containerized cloud native applications from development to production. Aqua's full lifecycle solution prevents attacks by enforcing pre-deployment hygiene and mitigates attacks in real time in production, reducing mean time to repair and overall business risk. The Aqua Platform, a Cloud Native Application Protection Platform (CNAPP), integrates security from Code to Cloud, combining the power of agent and agentless technology into a single solution. With enterprise scale that doesn’t slow development pipelines, Aqua secures your future in the cloud. Founded in 2015, Aqua is headquartered in Boston, MA and Ramat Gan, IL protecting over 500 of the world’s largest enterprises.
Read Aqua Security reviews on G2

Use Cases

Environments

Partners

Resources

About Us

Get in Touch

Products

Get Started
Copyright © 2026 Aqua Security Software Ltd.   Privacy Policy | Terms of Use | Cookie Policy | Your Privacy Choices |  
Accessibility Tools
Normal text size Medium text size Large text size
Normal display Black & White display High contrast display
Stop transitions and animations Underline Links