Aqua News

Aqua Security in April debuted Dynamic Threat Analysis to defend container-based environments from sophisticated malware that can only be detected using dynamic analysis of a running container. Six months later, the company debuted new Kubernetes-native security capabilities to secure applications that run on Kubernetes across the development, deployment and runtime phases of the application life …

Tsvi Korren, field CTO of application security company Aqua Security, recommended laying down rules for developers for using open-source components. “An organization can say it’s okay to use open-source components, but you need components that have had a commit in the last three months or a project that has more than 10 maintainers so it isn’t …

Happy New Year! For us in cloud native industry, 2021 promises to be an exciting one. As companies accelerate their digital transformation, security will be more critical than ever. There’s a lot to look forward to – starting this month, KubeSec Enterprise Summit will bring together industry thought leaders and discuss all things cloud native …

One lesson data centers should not take away from the SolarWinds breach is that installing supplier patches is a bad idea. The attack did compromise the automated software update system, but it’s a lot more dangerous to leave known vulnerabilities in your systems, said Tsvi Korren, field CTO at Aqua Security. “It requires some painstaking …

Cloud native technologies have the potential to truly change the way we access and secure applications, but the success of this relies on the people and processes in place to handle the roll out of these technologies. This requires appropriate leadership, and decision makers within an organisation who demonstrate robust cloud security leadership are more …

4. Cloud-based services will come under increased attack Infrastructure as code (IaC), platform as a service, and software as a service will attract more attention than ever from attackers in 2021. Amir Jerbi, CTO of Aqua Security, a cloud application security provider, explained that, because DevOps increasingly uses IaC templates to automate provisioning of cloud-native platforms, …

“Our open source projects are all intended to be useful, standalone tools in their own right,” says Liz Rice, VP of open source engineering at Aqua Security. “We also incorporate them into our commercial platform, where they become part of a much more sophisticated and interconnected system, but we don’t hold back features from the open …

DevOps and DevSecOps will evolve into “platform teams” in many organizations, says Liz Rice, vice president of open source engineering at Aqua Security: “New ‘platform teams’ will take the lead on enterprises’ strategy for what historically been within the purview of cloud operations, security, and development tooling functions, to provide a higher-level abstraction to application …