Source URL: https://blog.cloudflare.com/cloudflare-acquires-kivera
Source: The Cloudflare Blog
Title: Cloudflare acquires Kivera to add simple, preventive cloud security to Cloudflare One
Feedly Summary: The acquisition and integration of Kivera broadens the scope of Cloudflare’s SASE platform beyond just apps, incorporating increased cloud security through proactive configuration management of cloud services.
AI Summary and Description: Yes
**Summary:** The acquisition of Kivera by Cloudflare significantly enhances cloud security through its integration into the Cloudflare One platform, providing inline cloud application controls that proactively address risks associated with cloud misconfigurations. This approach is crucial in mitigating the rising threat of cloud exploitation, which has increased substantially in recent years.
**Detailed Description:**
The text outlines a strategic acquisition by Cloudflare aimed at enhancing its cloud security offerings. The key points include:
– **Integration of Kivera**: Cloudflare’s acquisition of Kivera expands its Secure Access Service Edge (SASE) portfolio by incorporating preventive controls for cloud applications, helping organizations manage their cloud security posture more effectively.
– **Growing Risks**: There has been a notable increase in cyberattacks targeting cloud environments, primarily attributable to misconfigurations. Important statistics highlight a 95% rise in cloud exploitation incidents and 31% of data breaches stemming from misconfigurations and human error.
– **Proactive Security Measures**: Kivera introduces inline security measures that can detect and prevent misconfigurations before they lead to breaches. Key capabilities include:
– **One-click security** for quick mitigation of common misconfigurations.
– **Enforced controls** to maintain boundaries around sensitive data.
– **Data exfiltration prevention** by enforcing rules to track unauthorized data transfers.
– **Regulatory compliance** automation, ensuring adherence to frameworks efficiently.
– **Complexity of Cloud Management**: With the rapid adoption of cloud services, organizations often struggle with the complexity of managing multi-cloud environments, leading to misconfigured settings which can be exploited.
– **Exploitation Patterns**: Attacks on cloud services often involve targeting misconfigurations, abusing privileges, and exploiting unencrypted data. Recommendations to mitigate these risks include:
– Restricting access to cloud resources.
– Encrypting access keys.
– Minimizing excessive permissions.
– Maintaining better network segmentation.
– Addressing shadow infrastructure.
– **Limitations of Current Tools**: Traditional Cloud Security Posture Management (CSPM) tools tend to be reactive, alerting teams only after an issue has occurred. This emphasizes the need for proactive security solutions that can prevent configurations from failing in the first place.
– **Future Directions**: Kivera’s services will become a core part of Cloudflare One, and upcoming enhancements are aimed at fully integrating their preventive capabilities, ensuring cohesive security management across hybrid environments.
Overall, the acquisition and integration of Kivera into Cloudflare’s platform represents a significant development in cloud security, providing proactive strategies to tackle common vulnerabilities and enhance compliance in an increasingly complex digital landscape. Security professionals must pay attention to these shifts to better protect their organizational environments against evolving cyber threats.