1640: Discussing the Increase in Cloud Attacks with Aqua Security

Assaf Morag and Ehud Amiri from Aqua Security join me on the Tech Talks Daily Podcast to discuss finding from Aqua's 2021 Security Report, which assesses cloud infrastructure risks. During 12 months, Aqua Security conducted an in-depth analysis of Aqua Cloud Security Posture Management (CSPM) usage data and found that 40% of users had at least one misconfigured Docker API. But, overall, 84% of users were able to detect and remediate misconfiguration issues using CSPM, which would otherwise have gone unnoticed without manual involvement. Although cloud-native applications have many benefits, such as allowing more agility by giving more people access to define the environment, it means that many organizations are moving away from a centralized approach to security. Where once there was only a small, highly skilled team of security practitioners making all configuration changes, we now have a modern, decentralized approach. Indeed, a recent IDC survey showed that almost 80% of respondents had at least one cloud security breach over the preceding 18 months. We talk about Aqua's 2021 Security Report findings, explore the complexity of cloud environments, and discuss some solutions to help mitigate these risks.