XM Cyber, a hybrid cloud security company, has bought Confluera, a cyber attack detection and response cloud services company.

With this deal, XM Cyber now offers a comprehensive CNAPP (cloud native application protection platform) service using its path modeling to assess risks to the assets in cloud environments. Together with Confluera, XM Cyber’s continuous exposure management platform looks to provide all aspects of cloud security, from identifying and fixing risk regarding cloud identities (CIEM), identifying vulnerabilities and the detection and response of cyber attacks in real time (CWPP) and practice and compliance management (CSPM).

“For example, XM Cyber shows our customers how an attacker could take advantage of a cloud secret found in the on-prem environment, move into the cloud, escalate privileges of an EC2, and compromise S3 buckets with sensitive information through a chain of events,” comments Boaz Gorodissky, co-founder and CTO of XM Cyber. “Now with Confluera, we will detect if this attack path is actually happening in real time, alert our customers and help them stop the attack before it reaches the S3 buckets.”