Aqua Blog

Aqua Security

Unleashing Scale for Hybrid Cloud: Aqua to Protect Containerized Environments on LinuxONE 4 Express

Unleashing Scale for Hybrid Cloud: Aqua to Protect Containerized Environments on LinuxONE 4 Express

We are excited to announce the upcoming support of the Aqua Cloud Native Application Platform (CNAPP) on IBM Z and LinuxONE, alongside IBM’s unveiling of its new LinuxONE 4 Express system. Support of the Aqua Cloud Native Application Platform (CNAPP) on IBM Z and LinuxONE will be available in 1Q 2024. 

Continue reading ›
The Gaps in Open Source Governance That Threaten the Software Supply Chain

The Gaps in Open Source Governance That Threaten the Software Supply Chain

The widespread issue of unmaintained and deprecated npm packages recently discovered by Aqua researchers affects more than a fifth of open source packages. Presenting yet another silent example of hidden threats to the software supply chain, it demonstrates how poor operational and structural integrity of dependencies …

Continue reading ›
Apache Applications Targeted by Stealthy Attacker

Apache Applications Targeted by Stealthy Attacker

Researchers at Aqua Nautilus have uncovered a new attack targeting Apache Hadoop and Flink applications. This attack is particularly intriguing due to the attacker's use of packers and rootkits to conceal the malware. The simplicity with which these techniques are employed presents a significant challenge to …
Continue reading ›
2024 Cybersecurity Trends: AI, Cloud, and Threat Intelligence

2024 Cybersecurity Trends: AI, Cloud, and Threat Intelligence

As we begin this new year, we see the landscape of cybersecurity poised to witness a surge in AI-driven attacks, propelling the industry into a rapid cycle of innovation. Defenders are on a quest to develop advanced AI-based security measures, not just to detect and respond to threats in real-time, but to predict and …

Continue reading ›
The TX-RAMP Certification: A Vital Credential for Aqua Security

The TX-RAMP Certification: A Vital Credential for Aqua Security

In today's digital age, data security is important. With organizations increasingly migrating their operations to the cloud, the need for robust cloud security solutions has never been greater. One significant credential that stands out in the realm of cloud security is the TX-RAMP (Texas Risk Assessment and …

Continue reading ›
Election Dynamics: Predictions for the U.S. Federal Government

Election Dynamics: Predictions for the U.S. Federal Government

As we approach 2024, the U.S. Federal Government stands at a critical juncture in cybersecurity. With the backdrop of an election year, emerging technological trends, and evolving cyber threats, it’s essential to anticipate the challenges and opportunities that lie ahead. Drawing from insights of recent expert …

Continue reading ›
The Evolving Landscape of Cloud Security: Our Predictions for 2024

The Evolving Landscape of Cloud Security: Our Predictions for 2024

In the ever-shifting realm of cybersecurity, where innovation and uncertainty intertwine, the year 2023 has been nothing short of chaos. As the dark underbelly of AI-powered threats surfaces, and court rulings redefine the consequences of security failures, the security industry stands at a pivotal juncture. CISOs …

Continue reading ›
Lasting Legacy of Log4j: Lessons for Runtime Security

Lasting Legacy of Log4j: Lessons for Runtime Security

Another December is upon us, stores are full of shoppers, lights are illuminating cities, towns and cul-de-sacs as radio stations bombard listeners with the continuous rotation of holiday music. Yet amongst all this merriment sits the IT security professional behind their screen completing their end of year tasks. …

Continue reading ›
Quantifying the Business Value of CNAPP: Total Economic Impact Study

Quantifying the Business Value of CNAPP: Total Economic Impact Study

Businesses have been embracing cloud native technologies because of their elasticity and flexibility. They allow enterprises to quickly scale and develop applications that are built with services packaged in containers, deployed as microservices and managed on elastic infrastructure through agile DevOps processes and …

Continue reading ›
Navigating Container Security within the FedRAMP Guidelines

Navigating Container Security within the FedRAMP Guidelines

The digital transformation journey of many organizations heavily leans on cloud technologies. As they migrate to the cloud, adhering to stringent security protocols becomes paramount. Enter FedRAMP(R) (Federal Risk and Authorization Management Program). It's a government-wide initiative designed to provide a …

Continue reading ›
SEC vs. SolarWinds: A Cybersecurity Game Changer for CISOs

SEC vs. SolarWinds: A Cybersecurity Game Changer for CISOs

As winter winds swept across the US this month an even colder wind swept through offices of organizations everywhere, as the SEC brought charges against SolarWinds Corporation and its Chief Information Security Officer (CISO). With one simple indictment the lives of CISOs everywhere changed (even if they may not know …

Continue reading ›