Organizations today face mounting pressure to manage vulnerabilities across increasingly complex cloud environments and software supply chains. According to Gartner, 45% of organizations worldwide will have experienced attacks on their software supply chains by 2025, a threefold increase from 2021. This surge highlights the need for proactive, integrated security solutions that not only uncover vulnerabilities […]

In today’s fast-paced cloud environments, risks and threats evolve by the minute, and teams closest to the code and infrastructure need the ability to understand their security posture, but also the flexibility of taking ownership of how to prioritize and remediate any given risk. In order to do so, security professionals need a way to […]

We’re thrilled to announce that Upwind has once again earned a spot on the prestigious Cyber 60 list, the definitive ranking of the 60 fastest-growing cybersecurity companies worldwide, compiled by Lightspeed Venture Partners in partnership with Fortune and AWS. This list recognizes the 60 fastest-growing cybersecurity startups, highlighting our commitment to innovation and delivering an […]

In modern cloud environments, risk moves between developers pushing new code, operations managing infrastructure, and security teams overseeing the broader threat landscape. In addition to the shared risk and collaboration challenges, teams are also often inundated with thousands of configuration alerts on a daily basis, making it difficult to prioritize truly critical risks with evidence […]

Modern cloud environments generate a constant stream of vulnerability information across thousands of assets, frameworks, and packages. While filters are essential to navigate this data, they can quickly become overwhelming as environments grow. Upwind’s new Investigate tab introduces a more efficient and guided way to explore vulnerabilities. Instead of relying on long lists of filters, […]

We are excited to announce that Upwind has been recognized by Latio as a leader in both Cloud Security and Cloud Application Detection and Response (CADR) in the newly released 2025 Latio Cloud Security Market Report. In this report, analyst James Berthoty highlights how the cloud security landscape is rapidly evolving beyond traditional CNAPP models, […]

In today’s fast-paced development environments, the speed of software delivery has outpaced traditional security workflows. APIs are often published before they’re reviewed, cloud resources are deployed via automation, and new vulnerabilities emerge in runtime that never existed in dev or staging. It’s estimated that over 50% of data breaches by 2025 will originate from unprotected […]

Upwind now supports a significant new AI-powered capability in the Upwind platform, allowing users to create custom posture rules with LLM-based Rego, streamlining workflows and accelerating reduction of their cloud attack surface. Upwind’s runtime-backed posture engine has always surfaced high-impact misconfigurations that pose true risks to cloud environments, often missed by traditional CSPMs. With this […]

Gartner has released the 2025 CNAPP Market Guide. According to Gartner: “​​while numerous providers exist, only a handful offer a comprehensive platform with the required breadth and depth of functionality, particularly emphasizing seamless integration through the development and operations processes.” We believe that Upwind’s inclusion in this group of vendors is a significant milestone. To […]

Cloud-native infrastructure has become more dynamic and distributed, but application behavior at runtime remains one of the most overlooked aspects of cloud security. Attackers increasingly exploit logic flaws and runtime gaps that static analysis can’t catch. Following our acquisition of Nyx in April 2025, we’ve now fully integrated its technology into the Upwind platform. This […]