WebP Zero-Day: Everything You Need to Know About Libwebp

This month, the Citizen Lab at The University of Toronto’s Munk School and Apple Security Engineering and Architecture (SEA) opened two critical vulnerabilities related to WebP images and Google’s webmproject/libwebp library. So, what is Libwebp? Libwebp is a commonly used library used to render WebP images. WebP is a modern image format that provides superior […]
Filter Out the Noise And Focus on the Vulnerabilities that Actually Matter

We’re excited to release an important capability for our Runtime Vulnerability management. Starting today, you can view an end-to-end funnel of your vulnerabilities, apply critical filters to your vulnerabilities data and answer these tough questions within seconds: You can now customize your vulnerability reports and filter vulnerabilities that are in use, Internet facing, have a […]
Leverage Runtime Data to Govern Your Database Network Access

We are excited to announce that Upwind has now added enrichment to RDS clusters and Google Cloud SQL in our context-rich topology map, leveraging runtime data to let you govern your database network access. The Upwind platform has always shown communication to RDS, but starting now, the map will drill down into the specific databases […]
Upwind’s Runtime-Powered Threat Detection

As organizations move to the cloud and put their mission-critical applications and most sensitive information in the cloud, adversaries target it and are using AI to compromise companies in hours, making the issue of threats and attempted cloud attacks a question of “when” not “if.” IBM’s Cost of a Data Breach Report in 2022 showed that 45 […]
Workflow Automation Support For Jira

We are excited to announce Upwind’s Jira integration, connecting your workflows for faster remediation. You can now make a Jira ticket for all Upwind threat and vulnerability detections, allowing you to get vital information to the right person, with the right context, in record time. For more information on how to use the Upwind platform […]
Connect Multiple Accounts using CloudFormation StackSets

Mass onboarding & automation with ease: connecting multiple AWS accounts using CloudFormation StackSets. You can now connect multiple cloud accounts using CloudFormation StackSets, making it a seamless process to connect to your environment and integrate with it. This feature focuses on ease of use, making it easier than ever to deploy Upwind across your cloud […]
Upwind’s CI/CD Awareness Streamlines Root Cause Analysis

In order to solve a problem, you have to know how it started. In cloud security, getting to the root cause of threats and vulnerabilities is often a labor-intensive process that can take hours or even days, costing companies valuable time to remediation. To solve this problem, Upwind has expedited the investigation process, providing detailed […]
Omri Casspi’s VC Sheva: Why We Invested in Upwind

From my days on the basketball court to founding Sheva eighteen months ago, the journey has been nothing short of exhilarating. But one of the most interesting conclusions I’ve come to so far is the direct connection between sports and the startup world. When I hung up my sneakers and transitioned from basketball to startup […]
Launching Upwind’s Runtime Vulnerability Management

Continuous Runtime Vulnerability Management at Scale
What is Shift-Right Security?

A look at the need for a shift-right security approach that includes runtime detection and response.