We’re excited to announce that Upwind now supports the Center for Internet Security (CIS) benchmark for Azure Kubernetes Service (AKS), helping security and compliance teams move faster with ongoing posture checks, active threat detection, and automated enforcement. With this release, customers can apply the same runtime-aware compliance capabilities already used across frameworks such as HIPAA, […]

Most cloud security platforms are built on static assumptions – scanning code, configs, and assets to guess where risk might exist. At Upwind, we took a fundamentally different approach: we built our platform on runtime. By capturing real-time signals directly from the kernel, Upwind delivers deep, continuous visibility into how workloads, APIs, identities, and data actually […]

One of Upwind’s core advantages begins the moment runtime data is collected. That’s the moment teams stop guessing and start securing based on what’s actually happening in their clusters. From there, they gain meaningful visibility into workload behavior, identify real risks, and apply security policies based on observed activity rather than assumptions. To help teams […]

In cloud security, visibility without prioritization creates noise – and that’s why ever aspect of our product is designed to bring actionable value. For this reason, we are excited to announce enhancements to the the Upwind Home Dashboard, making it even easier to immediately understand the state of an environment and which security findings should […]

Sensitive data is the crown jewel of every organization and the primary target for attackers. But in modern cloud environments, it’s increasingly difficult to answer key questions, like, “Where is our data? How is it used? What’s putting it at risk?” Consider the example shown below – an organization has security tooling in place, but […]

Modern cloud-native environments offer unprecedented speed, scalability, and developer agility – but they also introduce complexity that traditional security tools struggle to manage. Containers spin up and down in seconds, microservices multiply rapidly, and infrastructure changes dynamically. Static logs and agent-based security solutions simply can’t keep up. That’s where eBPF comes in –  and why […]

At Upwind Security, we’re excited to bring a new kind of CNAPP to life – one that puts APIs and applications at the center of cloud defense. APIs have become the backbone of modern cloud-native architectures, yet they remain one of the most overlooked and exploited entry points. It’s not just a future concern; it’s […]

As organizations continue to scale their cloud-native applications across multi-cloud and hybrid-cloud environments, the complexity of threat detection has reached a new high. Traditional, signature-based approaches are no longer sufficient – they often fail to catch modern attacks that unfold subtly across layers of infrastructure and identity. Upwind introduces a powerful new approach to cloud […]

Kubernetes, often called K8s, is revolutionizing how organizations deploy and manage containerized applications. Originally developed by Google and now open-source, Kubernetes has become a standard for orchestrating containers across on-premises, hybrid-cloud, and public cloud environments. But with this increased flexibility and scalability comes a new range of security challenges that require thoughtful, proactive solutions. In […]

Keeping open source container images up to date and secure is hard. Teams face long, noisy lists of available updates and often can’t tell which are relevant or risky. Upwind helps by showing what’s actually running in your environment and giving clear, context-based recommendations. The Open Source Security Challenge Most containerized environments rely heavily on […]