Cloud and endpoint cybersecurity startup Uptycs Inc. today announced. the enhanced Kubernetes and container security capabilities that provide threat detection for the container runtime related to Kubernetes control plane attacks.
The Uptycs solution is designed to help organizations using or evaluating Kubernetes, the software that orchestrates the running of containers, which host components of modern applications. But they are often unprepared to detect threats against new deployments. With the enhanced protection offered by Uptycs, the company says, organizations can detect attacks against their Kubernetes deployments by using a shift-up approach to cybersecurity.
The “shift-up” approach involves analyzing telemetry from Kubernetes clusters and containers, laptops, and cloud services, where the data is processed, correlated and analyzed in a data lake. Along with protecting against plane attacks, the service also scans container images in registries for vulnerabilities, malware, credentials, secret keys and other sensitive information.
New Kubernetes and container runtime security features include threat detection, which combines Kubernetes’ anomalous actions with actions on a granular container lever. Uptycs can observe in real time and store behavior for investigation, reducing mean time to detection, collecting forensic evidence for investigation, and determining the full scope of the incident as it occurs.
Registry scanning in the release enables the ability to search for vulnerabilities in container images in a registry. Registry support includes AWS ECR, Azure Container Registry, DockerHub and jFrog Artifactory. Secret scanning provides the ability to find private keys, credentials and other secrets stored in container images, and hardening checks ensure that Kubernetes deployments are set up accordingly in updated guidance on hardening provided by the US National Security Agency and the Cybersecurity and Infrastructure Security Agency.
“Threat actors know that a developer’s laptop is often just a hop away from cloud infrastructure,” Ganesh Pai, co-founder and chief executive officer of Uptycs, said in a statement. “Uptycs correlates danger signals from modern attacks for lightning-fast, contextual detection and response. It’s a shift-up approach to cybersecurity that brings together multiple teams and types of infrastructure of IT in a unified data model and UI.”
Uptycs was in the news last year when it raised $50 million in new funding in a round led by Norwest Venture Partners that included the venture capital arm of Sapphire Ventures and ServiceNow Inc. The company has raised $93 million to date, according to Crunchbase.