Understanding the NVIDIAScape (CVE‑2025‑23266) Container Toolkit Vulnerability – and Why Your AI Workloads Are Most Likely Safe

B-2

Overview: CVE-2025-23266 is a container‑escape vulnerability (CVSS 9.0) affecting the NVIDIA Container Toolkit and GPU Operator. While this vulnerability requires multiple specific conditions, it has the potential to allow a malicious container image to escape its sandbox and execute code as root on the host. NVIDIA has released patched versions of both components. Upgrading to Toolkit v1.17.8  and  GPU Operator 25.3.1 […]

Why Cloud Threat Detection Needs a Rethink – And How Upwind Delivers It

Threat Stories-b

As organizations continue to scale their cloud-native applications across multi-cloud and hybrid-cloud environments, the complexity of threat detection has reached a new high. Traditional, signature-based approaches are no longer sufficient – they often fail to catch modern attacks that unfold subtly across layers of infrastructure and identity. Upwind introduces a powerful new approach to cloud […]

Upwind and Legit Security Partner to Deliver True Code-to-Cloud Application Security

Upwind-Legit (1)

As software delivery accelerates with cloud-native architectures and AI-driven development, security must evolve to match the speed and complexity of modern engineering. That’s why Upwind, the runtime-first CNAPP, and Legit Security, a leader in Application Security Posture Management (ASPM), are partnering to provide end-to-end, code-to-cloud protection that combines deep runtime context with secure software development. […]

CVE‑2025‑32463: Critical Sudo “chroot” Privilege Escalation Flaw

CVE_2024_12718_Path_Escape_via_Python’s_tarfile_Extraction_Filters (1)

A critical vulnerability in sudo (Changelog v1.9.14–1.9.17) allows local users to gain root access via the –chroot (-R) option. This flaw carries a CVSS 3.1 score of 9.3 (Critical). Affected Versions Platform Coverage Why This Matters This flaw originates from a change introduced in sudo 1.9.14. Path resolution began occurring within the chroot environment before the […]

How CISOs Think Strategically About Cloud Security

Screen Shot 2025-07-01 at 9.10.17 AM

This year at AWS re:Inforce, Upwind CSO Rinki Sethi and Alteryx CISO Lucas Moody explored how leading CISOs approach cloud security strategically. This talk highlights key considerations, common pitfalls, and proven practices for securing cloud environments, helping CISOs walk away with actionable insights from industry veterans to elevate their organization’s security posture

Upwind Delivers Automatic Protection for Azure Functions, Accelerating Time to Value

Azure_Functions

As serverless computing continues to gain momentum, developers and DevOps teams are increasingly turning to Microsoft Azure Functions to build scalable, event-driven applications with minimal infrastructure overhead. However, the very benefits of serverless – rapid deployment, fine-grained event handling, and abstracted infrastructure – introduce new challenges for security teams. These environments are harder to monitor […]

Upwind CISO Fireside Chats: Episode 2

Screen Shot 2025-06-25 at 1.07.46 PM (1)

In this episode, we sit down with Jim Routh, former CISO at American Express, MassMutual, CVS, and more, for a conversation led by our CSO, Rinki Sethi. From accidentally becoming one of the industry’s first CISOs to redefining what leadership means in cybersecurity, Jim shares hard-earned insights on stakeholder management, runtime security, and the future […]

Road to Gold Part 2: Betting on the Future

Screen Shot 2025-06-25 at 2.51.59 PM

In Part 1 of this Road to Gold episode, former NBA Champion Omri Casspi shared how drive and resilience took him from Israel to the NBA. In Part 2, the conversation continues with Upwind co-Founder and CEO Amiram Shachar, diving into the mindset behind lasting success – being coachable, learning from mistakes, putting in the work, and surrounding […]

Mitigating GenAI Data Exposure in Light of OpenAI’s New Data Retention Policy

OpenAI Risks

On June 6, 2025, Reuters reported that OpenAI is appealing a U.S. court order requiring the company to preserve all user interactions with ChatGPT and its API, including conversations that users deleted. This legal mandate stems from an ongoing copyright lawsuit filed by The New York Times and has effectively suspended OpenAI’s standard data deletion […]

Upwind Wins Big at Cloud Security Showdown Hosted by Tamnoon & Analyst James Berthoty

1st_place_cnapp_showdown_-_overall_winner-2025-2048x1229

Big win for Upwind: We took home the overall title and earned top honors across every category at the Tamnoon Cloud Security Demo Showdown on June 5th. Upwind placed in the top three for all four categories of the people’s choice categories: Application Security, Cloud Security Posture Management (CSPM), Runtime Security, and Vulnerability Management. These […]