Aqua News

Yakir Kadkoda, Lead Security Researcher, Team Nautilus at Aqua Security, adds, “one of the biggest insider risks in the development process is code leakage. Any instance of code leakage leaves business logic, vulnerabilities, secrets and internal processes visible to everyone. This can lead to attacks and vulnerabilities for many years to come.” 

BOSTON—October 19, 2022—Aqua Security, the leading pure-play cloud native security provider, today announced it more than doubled revenue in the last 18 months. Aqua attributes its recent growth to rapidly increasing demand for an integrated solution that secures cloud native applications from code through runtime. The company also reports its $1 Million Cloud Native Protection …

One way to defend against these kinds of attacks is to keep the package names secret so they can’t be cloned. But according to Aqua Security’s Nautilus research team, it’s possible to reveal private packages names by using a glitch in npm’s registry API. 

“By creating a list of possible package names, threat actors can detect organizations’ scoped private packages and then masquerade public packages, tricking employees and users into downloading them,” Aqua Security researcher Yakir Kadkoda said. 

BOSTON – Oct. 6, 2022 – Aqua Security, the leading pure-play cloud native security provider,  today announced that it has been selected as winner of the “Overall CyberSecurity Company of the Year” award in the 6th annual CyberSecurity Breakthrough Awards program conducted by CyberSecurity Breakthrough, a leading independent market intelligence organization that recognizes the top companies, …

Last week, the company debuted what it’s calling an “end-to-end software supply chain security solution” covering the multiple software development phases that need to be protected against attacks.

Threat analysts at Aqua have spotted signs of TeamTNT activity on their honeypots since early September, leading them to believe the notorious hacking group is back in action. 

Aqua Security’s app protection platform now includes software supply chain security for enterprise-tier customers. “There are also many competitors to choose from among CNAPP tools vying to be a one-stop shop for application security. But that’s where Aqua’s strengths in Kubernetes and microservices app security also make it an attractive option,” said Joseph Elbaz, head of application …