Security News

The Future of Serverless Security in 2025: From Logs to Runtime Protection
2024-11-28 11:30

Serverless environments, leveraging services such as AWS Lambda, offer incredible benefits in terms of scalability, efficiency, and reduced operational overhead. However, securing these...

New malware targets serverless AWS Lambda with cryptominers
2022-04-07 18:58

Security researchers have discovered the first malware specifically developed to target Amazon Web Services Lambda cloud environments with cryptominers. AWS Lambda is a serverless computing platform for running code from hundreds of AWS services and software as a service apps without managing servers.

First Malware Targeting AWS Lambda Serverless Platform Discovered
2022-04-07 18:47

A first-of-its-kind malware targeting Amazon Web Services' Lambda serverless computing platform has been discovered in the wild. Dubbed "Denonia" after the name of the domain it communicates with, "The malware uses newer address resolution techniques for command and control traffic to evade typical detection measures and virtual network access controls," Cado Labs researcher Matt Muir said.

You may have cracked serverless development, but it’s almost certain you haven’t solved serverless security
2021-12-14 18:00

Serverless is revolutionizing software development, allowing organizations to produce applications which consume cloud resources only when they need to. So it might come as a shock that while 70 per cent of respondents to the State of Serverless Application Security Report have six or more teams working on serverless development, they are also building up a worrying "Serverless security debt".

Serverless security market size to reach $5.1 billion by 2026
2021-08-30 03:00

The serverless security market size to grow from $1.4 billion in 2021 to $5.1 billion by 2026, at a CAGR of 29.9% during the forecast period, according to MarketsandMarkets. AWS, Microsoft Azure, Google Cloud Platform with multiple offerings, and IBM are the major providers of FaaS. In security type, network security to grow at the highest CAGR. Network security is the technique of securing networks from advanced threats on the serverless architecture.

AWS Proton: Fully managed application delivery service for containers and serverless
2021-06-11 00:30

Amazon Web Services announced the general availability of AWS Proton, an application delivery service that makes it easier for customers to provision, deploy, and monitor the microservices that form the basis of modern container and serverless applications. AWS Proton is an application delivery service that helps platform teams provide an easy way for their developers to provision, deploy, and monitor applications when the unit of compute is dynamic, like with containers and serverless.

Imperva introduces Serverless Protection to secure serverless computing functions
2021-05-26 02:30

Imperva launches Imperva Serverless Protection, a new product built to secure organizations from vulnerabilities created by misconfigured apps and code-level security risks in serverless computing environments. Imperva Serverless Protection offers market-differentiated capabilities to help organizations manage the complex security risks that emerge in serverless functions.

Datadog’s AWS Lambda extension allows customers to collect telemetry from serverless applications
2021-05-26 01:00

Datadog announced the general availability of Datadog's AWS Lambda extension. "We are delighted to see Datadog's monitoring platform extend to support AWS Lambda extensions," said David Richardson, Vice President, Serverless, AWS. "AWS Lambda extensions make it even easier for developers to adopt their preferred monitoring and security tools, and we're excited to work with Datadog on the general availability launch of AWS Lambda extensions and of their monitoring extension."

Data Theorem Cloud Secure protects cloud-native apps, API services and serverless cloud functions
2021-03-26 03:00

Data Theorem introduced Cloud Secure, application-aware full stack cloud security product with attack surface management for protecting data in cloud-native apps, API services and serverless cloud functions. As Data Theorem's latest product powered by Analyzer Engine, Cloud Secure is available to identify and remediate potential data breaches found in public cloud services used to power today's modern web and mobile applications.

CTO.ai serverless platform simplifies adoption of Kubernetes for developers
2021-03-22 03:00

CTO.ai announced the launch of its serverless Kubernetes platform that makes it easy for developers to deploy and manage their cloud native applications. This powerful, yet easy-to-use, platform makes product delivery teams more efficient and eliminates the complexity experienced by developers when applications are deployed on top of a self-managed Kubernetes cluster.