ARMO CADR provides a full explainable and traceable runtime security story spanning the entire cloud stack and responds to threats without flooding teams with alerts. ARMO is a Cloud Runtime Security company providing the first open source driven, runtime-powered, Behavioral Cloud Application Detection and Response Platform. ARMO, the leading Cloud Runtime Security company and the creator of Kubescape, announced today the launch of its Behavioral Cloud Application Detection and Response (CADR) solution. ARMO CADR is the first runtime security solution to provide a holistic view of a threat, from the line of code being exploited, to the cloud API where the data resides. It provides a fully explainable and traceable runtime security story spanning the entire cloud security stack, without flooding teams with alerts. ARMO’s open source project, Kubescape, is the fastest growing CNCF open source cloud security solution used by over 25K companies and deployed in over 100K high scale cloud environments worldwide. This foundation is continuously enriched with contextual data from Kubernetes events, cloud infrastructure, and container metrics, enabling real-time attack detection and response with granular visibility across stack traces, APIs, network layers, and code functions. By mapping attacks from the cloud management layer to specific code execution, it accelerates incident investigation and response by giving SecOps teams the missing context for cloud alerts. Security teams can define response policies that trigger automatic actions to contain or mitigate security threats, without manual intervention, while accounting for accepted risk of workloads or containers. ARMO is the only solution that continuously minimizes the cloud attack surface based on runtime insights, while actively detecting and automatically responding to cyberattacks as they happen. Security operations teams find themselves grappling with fragmented alerts from multiple tools, each providing only a partial view of potential threats. ARMO CADR leverages the company’s open source Kubescape’s eBPF-based runtime sensor to establish baseline application behavior patterns. By allowing DevOps to verify detection mechanisms rather than working with a “black box,” the solution aligns security practices with operational goals. ARMO’s response options go beyond standard responses with the option of Soft Quarantine, which secures suspicious processes or containers while maintaining application uptime by using strict network policies and seccomp profiles.
This Cyber News was published on cybersecuritynews.com. Publication date: Tue, 25 Mar 2025 16:10:30 +0000