Lightspin Blog

Cisco Announces its Intent to Acquire Lightspin
Cisco Announces its Intent to Acquire Cloud Security Software Company Lightspin

— Read more ▸
Cloud Security
ROI and Total Cost of Ownership for the Lightspin Cloud Native Application Protection Platform (CNAPP)
Lightspin is proven to significantly reduce the risk of a breach and detect and remediate malware reducing cybersecurity risk with an ROI of up to 700%.

— Read more ▸
Cloud Security
What Is Graph Technology? What Can It Do?
Graph technology can help examine your data from a new perspective; find out how graph technology may find previously unseen relationships in your data.

— Read more ▸
Cloud Security

Research
Azure Cloud Shell Command Injection Stealing User’s Access Tokens
This post describes how I took over an Azure Cloud Shell trusted domain and leveraged it to inject and execute commands in other users’ terminals.

— Read more ▸
Cloud Security
What is Agentless Scanning & Do I Need It?
Agentless scanning is an important security tool. We discuss how agentless scanning works, how it differs from agent-based scanning, and whether you need both.

— Read more ▸
Cloud Security

DevSecOps

Research
The guide to analyzing Kubernetes runtime detection alerts using Amazon Athena
Lightspin created a public repository with common use cases to simulate unusual/malicious activities within the Kubernetes cluster.

— Read more ▸
Cloud Security
What is SOC2 Compliance?
Cloud security is an ongoing requirement for all organizations born and built in the cloud. One way to probably demonstrate security controls is with a SOC 2 report.

— Read more ▸
Democratizing cloud security: introducing our FREE plan
Introducing our self-serve Free plan, and a jam-packed Premium offering. We’ve removed the guesswork from the traditional software buying process.

— Read more ▸
DevSecOps
What is DevSecOps? How Does It Work & What Are the Benefits?
Curious about DevSecOps? We explain what DevSecOps is, how it works, and how integrating security throughout development helps create more secure systems.

— Read more ▸
Research
The Complete Guide to AWS KMS
The Complete Guide to AWS KMS. AWS Key Management Service (AWS KMS) is a managed service that makes it easy for you to create and control the cryptographic keys used to protect ...

— Read more ▸

Gafnit Amiga

Gafnit Amiga

Cisco Announces its Intent to Acquire Lightspin

ROI and Total Cost of Ownership for the Lightspin Cloud Native Application Protection Platform (CNAPP)

What Is Graph Technology? What Can It Do?

Azure Cloud Shell Command Injection Stealing User’s Access Tokens

What is Agentless Scanning & Do I Need It?

The guide to analyzing Kubernetes runtime detection alerts using Amazon Athena

What is SOC2 Compliance?

Democratizing cloud security: introducing our FREE plan

What is DevSecOps? How Does It Work & What Are the Benefits?

The Complete Guide to AWS KMS

AWS ECR Public Vulnerability

Azure Cloud Shell Command Injection Stealing User’s Access Tokens

Exploiting Authentication in AWS IAM Authenticator for Kubernetes

New Vulnerabilities in Kubernetes NGINX Ingress Controller

AWS RDS Vulnerability Leads to AWS Internal Service Credentials

Achieve a resilient cloud security posture

Lightspin’s latest articles, right in your inbox.

AWS ECR Public Vulnerability

Azure Cloud Shell Command Injection Stealing User’s Access Tokens

Exploiting Authentication in AWS IAM Authenticator for Kubernetes

New Vulnerabilities in Kubernetes NGINX Ingress Controller

AWS RDS Vulnerability Leads to AWS Internal Service Credentials

AWS SageMaker Jupyter Notebook Instance Takeover

NGINX Custom Snippets CVE-2021-25742

Achieve a resilient cloud security posture