Lightspin Blog

Cisco Announces its Intent to Acquire Lightspin
Cisco Announces its Intent to Acquire Cloud Security Software Company Lightspin

— Read more ▸
Cloud Security
ROI and Total Cost of Ownership for the Lightspin Cloud Native Application Protection Platform (CNAPP)
Lightspin is proven to significantly reduce the risk of a breach and detect and remediate malware reducing cybersecurity risk with an ROI of up to 700%.

— Read more ▸
Cloud Security
What Is Graph Technology? What Can It Do?
Graph technology can help examine your data from a new perspective; find out how graph technology may find previously unseen relationships in your data.

— Read more ▸
Cloud Security

Research
Azure Cloud Shell Command Injection Stealing User’s Access Tokens
This post describes how I took over an Azure Cloud Shell trusted domain and leveraged it to inject and execute commands in other users’ terminals.

— Read more ▸
Cloud Security
What is Agentless Scanning & Do I Need It?
Agentless scanning is an important security tool. We discuss how agentless scanning works, how it differs from agent-based scanning, and whether you need both.

— Read more ▸
Cloud Security

DevSecOps

Research
The guide to analyzing Kubernetes runtime detection alerts using Amazon Athena
Lightspin created a public repository with common use cases to simulate unusual/malicious activities within the Kubernetes cluster.

— Read more ▸
Cloud Security
What is SOC2 Compliance?
Cloud security is an ongoing requirement for all organizations born and built in the cloud. One way to probably demonstrate security controls is with a SOC 2 report.

— Read more ▸
Democratizing cloud security: introducing our FREE plan
Introducing our self-serve Free plan, and a jam-packed Premium offering. We’ve removed the guesswork from the traditional software buying process.

— Read more ▸
DevSecOps
What is DevSecOps? How Does It Work & What Are the Benefits?
Curious about DevSecOps? We explain what DevSecOps is, how it works, and how integrating security throughout development helps create more secure systems.

— Read more ▸
Research
The Complete Guide to AWS KMS
The Complete Guide to AWS KMS. AWS Key Management Service (AWS KMS) is a managed service that makes it easy for you to create and control the cryptographic keys used to protect ...

— Read more ▸

Or Azarzar

Or Azarzar

Cisco Announces its Intent to Acquire Lightspin

ROI and Total Cost of Ownership for the Lightspin Cloud Native Application Protection Platform (CNAPP)

What Is Graph Technology? What Can It Do?

Azure Cloud Shell Command Injection Stealing User’s Access Tokens

What is Agentless Scanning & Do I Need It?

The guide to analyzing Kubernetes runtime detection alerts using Amazon Athena

What is SOC2 Compliance?

Democratizing cloud security: introducing our FREE plan

What is DevSecOps? How Does It Work & What Are the Benefits?

The Complete Guide to AWS KMS

DevOps Cloud Security Challenges for a Modern Environment

Killing Cloud Security Misconceptions #4: There is No Private in Your Public Cloud

10 ways to Escalate Privileges in Kubernetes

Protect Your Environment When Working with Amazon SageMaker

Killing Cloud Security Misconceptions Part 3: Least Privilege

Achieve a resilient cloud security posture

Lightspin’s latest articles, right in your inbox.

DevOps Cloud Security Challenges for a Modern Environment

Killing Cloud Security Misconceptions #4: There is No Private in Your Public Cloud

10 ways to Escalate Privileges in Kubernetes

Protect Your Environment When Working with Amazon SageMaker

Killing Cloud Security Misconceptions Part 3: Least Privilege

Presenting the Risk in IAM Policy Evaluation: Do You Know About this AWS Authorization Misuse?

Over-permissive CI/CD Pipelines are an Unnecessary Evil. Here’s Why.

What is Cloud Security?

What is Cloud Security Posture Management?

Killing Cloud Security Misconceptions Part 2: Cloud Workload Protection

Killing Cloud Security Misconceptions Part 1: Common Vulnerabilities and Exposures (CVEs)

Achieve a resilient cloud security posture