Aqua Security, the pure-play cloud native security provider, released a new threat report by Team Nautilus, Aqua’s cybersecurity research team, that reveals a growing, organised and increasingly sophisticated pattern of attacks on cloud native infrastructure. While most attacks were aimed at abusing public cloud compute resources for cryptocurrency mining, the methods used open the door for higher-value targets that leverage security gaps in container software supply chains and runtime environments.
The full 70-page report provides a detailed account of attacks observed in the wild during a full year of detailed observation and tracing. This is the one such report to outline the precise, systematic methods used to attack container infrastructure, and to highlight supply chain attacks as an emerging threat.
