Cloud Security, Application security

Upwind Launches Unified Cloud and Application Detection Platform After Nyx Integration

Upwind has completed its integration of Nyx, officially launching what it calls the industry’s first Cloud Application Detection and Response (CADR) platform. The move brings runtime visibility to both infrastructure and applications, giving security teams and MSSPs a unified, real-time view of what’s actually happening in production, not just what might happen.

Traditional CNAPP tools rely on static scanning or posture checks. Upwind is going in the opposite direction - anchoring detection and response in live telemetry. That includes process behavior, API activity, function-level code execution, and more. With Nyx’s eBPF-based engine now fully integrated, the platform can track the path from misconfigurations to exploitable vulnerabilities inside live application logic.

“Unified runtime visibility reveals whether vulnerabilities or misconfigurations are actually exploitable in your live environment,” Amiram Shachar, Co-Founder and CEO at Upwind told MSSP Alert.

“With Nyx’s function-level analysis, infrastructure risks are tied directly to the specific application execution paths that make them reachable. While traditional CNAPP tools may flag hundreds of theoretical issues, this approach isolates the few that are truly accessible in production. Security teams can then focus their efforts on what's most pressing.”

Bridging the Gap Between AppSec and Cloud Security

One of the more stubborn pain points in modern security operations is the lack of coordination between AppSec and cloud infrastructure teams. Upwind is trying to fix that by giving both sides a shared window into runtime behavior.

“By combining Nyx’s application-layer runtime data with infrastructure-level insights in a single platform, AppSec and cloud security gain a shared view of the same evidence,” Shachar explained.

“Exploitable code vulnerabilities are linked directly to the infrastructure, identity, and runtime path that make them reachable. This shared visibility allows AppSec teams to fix the code while the cloud security team applies relevant controls, without any blind spots. It shortens handoffs and enables faster, more coordinated incident response.”

Why Runtime Is Becoming the New Baseline

Upwind isn’t positioning runtime as just a feature, it sees it as a shift in mindset for security teams and budget holders.

“Function-level runtime visibility makes runtime security the definitive source of truth for understanding real exposure,” Shachar said.

“It shifts the conversation from theoretical vulnerabilities to what can actually be exploited, clarifying which risks are real and measurable. That enables security leaders to align budgets with controls that reduce risk in a tangible way. It also drives accountability, runtime data clarifies whether mitigations are working and whether risk is going down over time.”

For MSSPs, Real-Time Signal Without the Noise

Upwind’s CADR model is also built with scale in mind, especially for managed security service providers tasked with protecting dozens or hundreds of tenants.

“Upwind’s CADR model correlates real-time runtime data, including Nyx’s function-level exploitability signals, with identity, code, and infrastructure telemetry,” said Shachar.

“MSSPs get a unified operational view across tenants, with each event enriched for immediate action. This eliminates the need for heavy manual triage and lets MSSPs contain and remediate threats quickly. By highlighting only exploitable risks, MSSPs can scale efficiently, maintain SLAs, and avoid alert fatigue.”

With Nyx integrated, Upwind is planning to expand the same model into new domains like data security and AI workloads. But the core strategy stays the same: real-time insight, across all layers, delivered through a single platform. The goal is simple - catch what matters, when it matters, and give teams what they need to act.

An In-Depth Guide to Cloud Security

Get essential knowledge and practical strategies to fortify your cloud security.
Suparna Chawla Bhasin

Suparna is the Senior Managing Editor for CyberRisk Alliance’s Channel Brands, including MSSP Alert and ChannelE2E. She manages content development, sharpens editorial workflows, and ensures storytelling is tightly aligned with audience needs. With a background in technology, media, and education, she combines strategic insight with creative execution.

You can skip this ad in 5 seconds