Want to know the latest news and articles posted on Upwind | Cloud Security Happens at Runtime?
Then subscribe to their feed now! You can receive their updates by email, via mobile or on your personal news page on this website.
See what they recently published below.
Website title: Upwind Security: Cloud Security for the AI and Realtime Era
Is this your feed? Claim it!
Executive Summary Large Language Models now sit directly on the edge of production systems. They respond to API calls, generate code, retrieve internal knowledge, and execute workflows, all while accepting free-form input from users they do not control. That input is not structured, validated, or predictable. It is language. And language can be manipulated. This […]
Th...
Executive Summary On March 19-20, 2026, the Trivy supply chain incident impacted the trivy project and the GitHub Actions many teams rely on to install and run Trivy in CI/CD pipelines. Late Thursday night, Upwind’s MDR team observed observed anomalous Trivy activity inside a customer environment that deviated from established runtime baselines. The team identified […]
Amazon Bedrock is AWS’s managed platform for building generative AI applications using foundation models, agents, and Retrieval-Augmented Generation (RAG). It allows organizations to integrate powerful language models directly into their AWS environments, connecting probabilistic AI systems with deterministic cloud services such as IAM, S3, and Lambda. But for cloud security ...
What started as a visibility problem has become something much more dynamic and urgent: understanding what is actually happening inside modern cloud environments, in real time. As infrastructure becomes more distributed, ephemeral, and increasingly shaped by AI, security teams need more than snapshots. They need context. They need precision. And they need answers that move […...
Executive Summary CrackArmor is a group of vulnerabilities affecting the Linux kernel AppArmor security module that allow local attackers to interfere with how AppArmor security profiles are managed and enforced. By abusing weaknesses in policy management and kernel profile parsing logic, an attacker with limited system access may weaken AppArmor protections or escalate privi...