We’re thrilled to announce that Upwind now automatically posts concise, runtime-informed vulnerability feedback directly on GitLab merge requests when enabled in your CI/CD pipeline. Developers spend most of their time in merge requests, where they also need security context. As part of our Shift Left capabilities, Upwind brings prioritized, contextual findings into the GitLab review […]

We’re excited to announce that Upwind now supports the NIST Cybersecurity Framework, giving organizations a faster and more effective path to achieving compliance across their environments. With this release, all Upwind customers can map their entire cloud and containerized infrastructure to NIST controls in a single day, gaining instant visibility into alignment, gaps, and risk. […]

Cloud security teams face an overwhelming amount of data. Misconfigurations, vulnerabilities, identity risks, and exposures often live in separate tools and dashboards, making it difficult to see how they connect. The real challenge is understanding how these signals intersect to create true risk. That’s why we are excited to introduce Upwind Security Risks – a unified […]

We are thrilled to announce that Upwind has expanded its Microsoft Entra ID (formerly Azure Active Directory) detection coverage to provide deeper visibility into identity changes, privilege escalation, and credential misuse across Azure environments. These new detections help security teams identify and respond to identity-driven threats faster, before they can compromise the tenant or persist […]

We are excited to share the latest improvements to our eBPF-powered sensor, the foundation of our runtime security platform. By continuously enhancing how the sensor observes and protects Kubernetes environments, we’re making security both more effective and more efficient for our customers. As part of this advancement, we are introducing container image scan jobs, a […]

Upwind is excited to announce a new integration that brings deeper visibility and faster threat detection to Microsoft Azure environments. With native support for Azure Log Analytics and Activity Logs, customers can now detect risks and respond to threats across Azure with greater precision, especially around administrative activity, access patterns, and configuration changes. This release […]

Attack Path: From Source Code to API Abuse The recent Salesloft-Drift breach that compromised hundreds of organizations represents a new category of cyber threat that every security team needs to understand. This wasn’t a traditional hack; it was a sophisticated attack that exploited the very foundation of modern SaaS integrations: OAuth tokens and API trust […]

We’re introducing the Upwind Framework for PCI-DSS to help organizations meet one of the most widely adopted security standards. This release is part of Upwind’s broader mission to make compliance continuous and directly tied to runtime environments. In this blog, we will explain what PCI-DSS is and why it matters, highlight the growing challenges of […]

If you’re responsible for cloud security and compliance, you know the drill. Misconfigurations pile up across environments, frameworks keep updating, and leadership wants to see progress – all while your team is already stretched thin. The stakes are high. A single overlooked configuration can lead to major gaps in compliance, or worse, leave sensitive data […]

A security team at a large financial services company once spotted a troubling pattern: a low-privilege IAM role listed IAM users, created an inline policy, and then assumed a higher-privilege role. Each action looked routine on its own and slipped past their detection system, which analyzed events in isolation. Only later, during a manual review, […]