CVE‑2025‑32463: Critical Sudo “chroot” Privilege Escalation Flaw

CVE_2024_12718_Path_Escape_via_Python’s_tarfile_Extraction_Filters (1)

A critical vulnerability in sudo (Changelog v1.9.14–1.9.17) allows local users to gain root access via the –chroot (-R) option. This flaw carries a CVSS 3.1 score of 9.3 (Critical). Affected Versions Platform Coverage Why This Matters This flaw originates from a change introduced in sudo 1.9.14. Path resolution began occurring within the chroot environment before the […]

How CISOs Think Strategically About Cloud Security

Screen Shot 2025-07-01 at 9.10.17 AM

This year at AWS re:Inforce, Upwind CSO Rinki Sethi and Alteryx CISO Lucas Moody explored how leading CISOs approach cloud security strategically. This talk highlights key considerations, common pitfalls, and proven practices for securing cloud environments, helping CISOs walk away with actionable insights from industry veterans to elevate their organization’s security posture

Upwind Delivers Automatic Protection for Azure Functions, Accelerating Time to Value

Azure_Functions

As serverless computing continues to gain momentum, developers and DevOps teams are increasingly turning to Microsoft Azure Functions to build scalable, event-driven applications with minimal infrastructure overhead. However, the very benefits of serverless – rapid deployment, fine-grained event handling, and abstracted infrastructure – introduce new challenges for security teams. These environments are harder to monitor […]

Upwind CISO Fireside Chats: Episode 2

Screen Shot 2025-06-25 at 1.07.46 PM (1)

In this episode, we sit down with Jim Routh, former CISO at American Express, MassMutual, CVS, and more, for a conversation led by our CSO, Rinki Sethi. From accidentally becoming one of the industry’s first CISOs to redefining what leadership means in cybersecurity, Jim shares hard-earned insights on stakeholder management, runtime security, and the future […]

Road to Gold Part 2: Betting on the Future

Screen Shot 2025-06-25 at 2.51.59 PM

In Part 1 of this Road to Gold episode, former NBA Champion Omri Casspi shared how drive and resilience took him from Israel to the NBA. In Part 2, the conversation continues with Upwind co-Founder and CEO Amiram Shachar, diving into the mindset behind lasting success – being coachable, learning from mistakes, putting in the work, and surrounding […]

Mitigating GenAI Data Exposure in Light of OpenAI’s New Data Retention Policy

OpenAI Risks

On June 6, 2025, Reuters reported that OpenAI is appealing a U.S. court order requiring the company to preserve all user interactions with ChatGPT and its API, including conversations that users deleted. This legal mandate stems from an ongoing copyright lawsuit filed by The New York Times and has effectively suspended OpenAI’s standard data deletion […]

Upwind Wins Big at Cloud Security Showdown Hosted by Tamnoon & Analyst James Berthoty

1st_place_cnapp_showdown_-_overall_winner-2025-2048x1229

Big win for Upwind: We took home the overall title and earned top honors across every category at the Tamnoon Cloud Security Demo Showdown on June 5th. Upwind placed in the top three for all four categories of the people’s choice categories: Application Security, Cloud Security Posture Management (CSPM), Runtime Security, and Vulnerability Management. These […]

Upwind Welcomes Chief Security Officer Rinki Sethi

Screen Shot 2025-06-25 at 2.52.33 PM

Over the past year, Upwind has grown faster than we could have imagined. As companies race to secure dynamic cloud environments and GenAI workloads, it’s clear that the old ways of doing security with static tools, reactive alerts, fragmented context – just don’t work anymore. That’s why I’m so excited to welcome Rinki Sethi as our new Chief […]

Why I’m Joining Upwind By Rinki Sethi

Rinki - why-im-joining-upwind-3 (1)

Over the past several years, I’ve had the honor of serving as both CISO and CIO at publicly traded companies, operating at the intersection of security, technology and business. I have led global security teams through high-stake incidents, built programs from the ground up, and navigated the complexity of modern enterprise environments where risk moves […]

Upwind Named to Redpoint’s InfraRed 100 for the Second Year in a Row

infrared-100-2025

We’re honored to share that Upwind has been named to Redpoint Ventures’ 2025 InfraRed 100, a list that recognizes the most promising private companies driving innovation in cloud infrastructure. This is our second year in a row receiving this recognition, and we’re incredibly humbled to be included alongside so many trailblazers in the space. The InfraRed 100 highlights […]

Footer-Logo-07_03_2025

Stay In Touch

This field is for validation purposes and should be left unchanged.

Product

CNAPP
CSPM
CWPP
Container Security
Identity Security
Vulnerability Management
DSPM
CADR
API Security
GenAI Security

General

About
Contact
Careers
We are hiring!
Events
Case Studies
Get A Demo

Social

X
LinkedIn
Instagram

Resources

Feed
Glossary
Newsroom

Documentation

Privacy Policy
Terms of Use

© 2025 Upwind Security