Blog
Cloud Security

Cloud Security

How Cortex Cloud and Semgrep Are Redefining AI-Driven Application Security

Modern AppSec demands context. Cortex Cloud and Semgrep integrate to unify code, runtime, and infrastructure visibility, helping teams prioritize exploitable risks and ship faster.

Application Security

AppSec

Cloud Security

Partners

Oct 09, 2025

By Cameron Hyde

Cloud Security

Application Security

Cloud Posture Security

Cloud Runtime Security

AI Security Posture Management

Cloud Native Application Protection Platform

Application Security, ASPM, Cloud Security

Beyond Shift Left: Why Application Security Needs Smart Context

Application security posture management (ASPM) turns scans into context, prioritizes risk, and embeds guidance in developer workflows to prevent produ...

Sep 26, 2025

By Ory Segal

API Security, Cloud Runtime Security, Cloud Workload Protection, CWPP, Web Application & API Security

The Expanding API Attack Surface

API security for cloud-native teams: discover every API, prioritize risk with context, and enable real-time protection without slowing developers.

Sep 24, 2025

By Andrea Halsted and Amit Biton

Cloud Security, Cloud-Native Application Protection Platform, CNAPP

How Auto-Remediation Shifts the Odds in Cloud Security

CNAPP autoremediation streamlines cloud security by cutting alert noise, enforcing guardrails, and driving faster, safer outcomes for teams.

Sep 17, 2025

By Cody Queen

AppSec, ASPM, Cloud Security

Breakdown: Widespread npm Supply Chain Attack Puts Billions of Weekly Downl...

npm supply chain attack exposed billions of downloads to risk. Learn how malicious packages spread and how to prevent threats with Cortex Cloud.

Sep 10, 2025

By Asaf Henig and Cameron Hyde

More Blogs

Displaying 1—16 of

459 results

Sort By:

AppSec, Cloud Security, Partners

Accelerate Secure Development by Automating Delivery of a Compliant Cloud I...

Cortex Cloud and HashiCorp Terraform integration secures cloud infrastructure by default, enabling fast, compliant provisioning and reduced risk.

Sep 09, 2025

By Cameron Hyde

Cloud Detection and Response, Cloud Runtime Security, Cloud Security, Cloud Workload Protection, CNAPP

Taking Cloud Security from Visibility to Prevention with eBPF

eBPF delivers real-time cloud security with deep visibility, stability, and speed—enabling Cortex to protect workloads w...

Aug 27, 2025

By Mohit Bhasin

AI Security, AI Security Posture Management, Cloud Security

Why Self-Managed AI Models Are Blind Spots and What to Do About It

Understand the real AI security risks of running self-managed models, from hidden deployments to supply chain threats, and how to effectively monitor ...

Aug 18, 2025

By Roni Yaari

Cloud Infrastructure Entitlement Management, Cloud Security, Identity Security

Microsoft Entra Permissions Management to Retire: Why the Time for a Vendor...

Microsoft Entra Permissions Management retirement leaves multicloud identities exposed. Discover why a vendor-neutral CIEM is essential and how Cortex...

Aug 15, 2025

By David Trigano

Cloud Security, Cloud-Native Application Protection Platform

Beyond Integration Theater: Why Counting Connections Misses the Point in Cl...

Integrations: Go beyond the count. Our platform unifies data from all your sources with AI-driven analysis and automation to deliver measurable securi...

Aug 14, 2025

By Scott Simkin

Cloud Security, Data Security Posture Management

Use Microsoft Sensitivity Labels in Your Multicloud Security Strategy with ...

See Microsoft Purview Information Protection (MPIP) sensitivity labels for files across your cloud environment. Identify gaps and manage risk with Cor...

Aug 12, 2025

By Benny Rofman

AI Security, AI Security Posture Management, Cloud Security

Don’t Let Inactive AI Models Linger: Reduce Risk and Cost with Cortex Cloud

Reduce risks and costs from inactive AI models. Cortex Cloud's non-intrusive solution provides visibility and helps you clean up unused artifacts.

Aug 11, 2025

By Roni Yaari and Sharon Farber

Introducing Cortex Cloud ASPM

Cortex Cloud ASPM redefines application security with context-aware prevention, unified policy and runtime insight across the full software lifecycle.

Aug 05, 2025

By Cameron Hyde and Sarit Tager

AI Security, Cloud Runtime Security, Cloud Security

Resilience by Design: Security in the Age of Offensive AI

Resilience by design is the new imperative in cybersecurity, enabling defenders to contain AI-powered attacks and blunt their impact in the first five minutes.

Aug 01, 2025

By Ory Segal

Announcement, Cloud ASM, Cloud Security, CNAPP

What’s New in Cortex Cloud

Cloud attack surface management, file integrity monitoring, and Microsoft 365 DSPM lead Cortex Cloud’s innovations to eliminate blind spots and secure data.

Jul 24, 2025

By Orion Cassetto

Attack Surface Management, Cloud Security

See What Attackers Can Reach in Your Cloud

Cloud-based data breaches expose high-risk assets to the internet. Learn how to validate, prioritize and remediate external exposure with External Probe Validation.

Jul 21, 2025

By Mohit Bhasin and Alexandre Cezar

AI Security, Application Security, ASPM

AI's Hidden Security Debt

AI-powered coding assistants introduce security risks by generating flawed code, amplifying vulnerabilities, and undermining developer judgment at scale.

Jul 16, 2025

By Ory Segal

Cloud Security, CNAPP, Code to Cloud

Overcoming Cloud Security Consolidation Challenges

Cybersecurity: Consolidate 16+ cloud security tools to cut costs, reduce alert fatigue, eliminate visibility gaps, and strengthen your security posture.

Jul 11, 2025

By Ory Segal

AI Security, AI Security Posture Management

Implementing AI Security with Cortex Cloud AI-SPM

AI security posture management gives CISOs full visibility, safeguards AI data, and blocks prompt injection or model poisoning to speed secure innovation.

Jul 02, 2025

By Ory Segal

Announcement, Cloud ASM, Cloud Posture Security, CNAPP, CSPM

Cloud Attack Surface Management: See What Other CNAPPs Miss

Cloud attack surface management identifies unmanaged, internet-exposed assets and brings them under control to reduce risk across multicloud environme...

Jun 24, 2025

By Jason Williams

AI Security, AI Security Posture Management

The New AI Attack Surface — How Cortex Cloud Secures MCP

MCP Security in Cortex Cloud protects AI applications by securing Model Context Protocol communications and detecting API-layer threats in real time.

Jun 13, 2025

By Ory Segal, Aviv Sasson and Elad Shuster

Load more blogs

More Blogs

Displaying 1—16 of

440 results

Sort By:

Announcement, Application Security, Cloud Security, CNAPP, News and Events, Product Features, Products and Services

Introducing Cortex Cloud — The Future of Real-Time Cloud Security

Cortex Cloud brings the world’s leading CNAPP onto the #1 SecOps platform, delivering real-time protection — for the fir...

Feb 13, 2025

By Elad Koren

Cloud Runtime Security, Cloud Security

Is 'Peace-Time' Security Any Match for the Modern Threat Landscape?

Modern cloud threats require real-time protection to stop attacks in progress, correlate threats across the application stack and enable rapid, automa...

Mar 24, 2025

By Ory Segal

Cloud Security, Cloud-Native Application Protection Platform

Cortex Cloud Introduces the Third Wave of CNAPP Innovation

Prisma Cloud becomes Cortex Cloud: Our CNAPP story of innovation, defining and transforming cloud security for the duration of CNAPP’s five-year marke...

Mar 19, 2025

By Orion Cassetto

CDR, Cloud Runtime Security, Cloud Security

Cloud Runtime Security Without Tradeoffs

Cortex Cloud’s agentless scanning provides seamless visibility, while agent-based security delivers real-time monitoring and cloud runtime protection.

Mar 11, 2025

By Orion Cassetto and Mohit Bhasin

Cloud Runtime Security, Cloud Security, Cloud Workload Protection Platform

Cloud Workload Protection, Now Operating at Full Context

Cloud workload protection (CWP) gains new power with Cortex Cloud—unifying data, correlating context, and enabling CloudSec teams to respond with precision.

Apr 23, 2025

By Ory Segal

Cloud Workload Protection, Technical Documentation, Web Application & API Security

Understanding Template Injection Vulnerabilities

Template injection is a class of vulnerabilities that are commonly found in web applications and Prisma Cloud’s Web Application and API Security module can help.

Feb 22, 2022

By Artur Avetisyan

Why Cloud Security Must Be Cloud-Agnostic

Can CSPs offer effective cloud security when using a competitor’s cloud infrastructure or is it wise to adopt cloud-agnostic security across your multicloud estate?

Apr 01, 2025

By Sharon Farber

CI/CD, DevOps

Unpinnable Actions: How Malicious Code Can Sneak into Your GitHub Actions W...

Action pinning doesn’t always offer security. Understand risks stemming from the GitHub Actions ecosystem and learn how to avoid compromise of CI/CD pipeline.

Aug 30, 2023

By Yaron Avital

AI Security, AI Security Posture Management, Artificial Intelligence, Cloud Security, CSPM

The Rise of AI-Powered IDEs: What the Windsurf Acquisition News Mean for Se...

Cortex Cloud helps security teams prepare for AI-powered IDEs in the wake of OpenAI’s Windsurf acquisition, securing code and risks across the lifecyc...

May 12, 2025

By Sharon Farber

Announcement

Prisma Cloud: The Industry’s Only FedRAMP High Authorized CNAPP

FedRAMP bestows the first CNAPP with FedRAMP High authorization, making Prisma Cloud the only CNAPP to hold FedRAMP High certification.

Dec 19, 2024

By Cameron Hyde

Cloud Workload Protection Platform, DevSecOps

Announcing Checkov 2.0: Deepening Open Source IaC Security

Checkov 2.0 is a graph-based, open source IaC security tool for environments with complex dependencies across resources and modules.

Apr 08, 2021

By Matt Johnson

Announcement, CNAPP, Compliance

Cortex Cloud Stands Alone to Secure Mission-Critical Workloads with FedRAMP...

Cortex Cloud earns FedRAMP High and Moderate, becoming the only CNAPP with both. Delivering real-time cloud security for mission-critical government w...

May 15, 2025

By Cameron Hyde

Cloud Security, Points of View, Predictions

Forecasting the 2025 Cloudscape

Discover 2025 cloud security trends, predictions on AI-driven threats, market consolidation, data security in CNAPPs, and more from Prisma Cloud leaders.

Dec 05, 2024

By Amol Mathur

Announcement, AppSec, CI/CD

GigaOm Names Prisma Cloud a Leader in Software Supply Chain Security

Secure your software supply chain with Prisma® Cloud, the top-ranked leader in GigaOm's Radar, offering end-to-end protection for cloud-native applications.

Dec 17, 2024

By Emily Rodenhuis

Cloud Posture Security, Cloud Workload Protection, Research

Container Escape: New Vulnerabilities Affecting Docker and RunC

Mitigate critical Leaky Vessels vulnerabilities in Docker and RunC with in-depth analysis on CVE-2024-21626, CVE-2024-23651, CVE-2024-23652, and CVE-2...

Feb 05, 2024

By Shaul Ben Hai and Artur Oleyarsh

Data Detection and Response, Data Security, Data Security Posture Management

Shadow Data Is Inevitable, But Security Risks Aren’t

Explore shadow data in multicloud environments and learn how data security posture management (DSPM) can help protect sensitive data while balancing security and agility.

Dec 12, 2023

By Benny Rofman

Load more blogs

Cloud Security

How Cortex Cloud and Semgrep Are Redefining AI-Driven Application Security

Cloud Security

More Blogs

More Blogs

Subscribe to Cloud Security Blogs!

Get the latest news, invites to events, and threat alerts