In our previous article on Cloud Heists, we highlighted how attackers exploit credential theft and privilege escalation to take over cloud environments. However, ransomware poses an even broader threat, targeting cloud platforms to steal sensitive data, disrupt business operations, and hold companies hostage. In this post, we’ll explore these growing ransomware trends and offer insights […]

In a multi-cloud and hybrid-cloud reality, Upwind provides comprehensive cloud security to accelerate productivity and empower their development, security and DevOps teams to innovate within a secure and efficient environment, including managed Kubernetes services like Microsoft’s AKS (Azure Kubernetes Service). Upwind customer Petrofac leverages Upwind to protect their AKS resources across a number of areas: […]

Upwind’s next-generation cloud security platform not only provides real-time risk analysis and threat detection, it also gives you the ability to respond to threats in real time.  In this article, we will dive deep into how Upwind detects threats in real time, our advanced methods of  activity-based threat detection, and ways you can stop or […]

We are excited to announce an addition to Upwind’s comprehensive container security, with support for Container-Optimized OS. What is Container-Optimized OS? Container-Optimized OS is a Google Cloud operating system image, and is the default node OS Image in Google Kubernetes Engine (GKE). It is primarily used for compute engine VMs and is optimized for running […]

We are excited to announce that Upwind has been named by Fortune and Lightspeed Venture Partners in the 2025 Fortune Cyber 60. This list recognizes the 60 fastest-growing cybersecurity startups, highlighting our commitment to innovation and delivering an industry-leading cloud security platform. This is the second year in a row that Upwind has been named […]

Upwind has been named by The Information as one of the most promising startups in the SaaS & Security category, highlighting our commitment to building an industry-leading cloud security platform. The Information’s annual list focuses on 50 companies that have the potential to be the most valuable businesses in their categories, based on their revenue, […]

In today’s dynamic cloud landscape, security is a top priority for organizations of all sizes. As businesses migrate to the cloud, ensuring their cloud environments are secure and compliant becomes essential. Cloud Security Posture Management (CSPM) tools are critical in this process, helping organizations maintain a strong security posture while mitigating risks. In this blog […]

We are excited to announce a significant new addition to Upwind’s API Security capability – the automatic discovery and classification of sensitive data flows. Upwind automatically tracks sensitive data routes and classifies sensitive data as PCI, PII, and PHI by analyzing API samples recognized by the Upwind sensor, making it easy to identify where you […]

A critical Remote Code Execution (RCE) vulnerability identified as CVE-2024-21534 has been discovered in versions of the jsonpath-plus package before 10.0.0. This vulnerability allows attackers to execute arbitrary code on affected systems by exploiting improper input sanitization and the unsafe default usage of the vm module in Node.js. jsonpath-plus is a JavaScript implementation of JSONPath […]

We are excited to announce support for AWS Lambda as a part of Upwind’s agentless Cloud Scanners. Upwind’s protection for Lambda functions running on AWS can be seen throughout the Upwind platform, extending our proactive risk analysis and visibility across  your entire cloud infrastructure – from containers to VMs to serverless. What are Lambda Functions? […]