In this post, I shall be discussing about the vulnerabilities of a comparatively new concept called “serverless applications”. Before we can proceed with our discussion, the question that might come up is What is a Serverless App? (at least that was the question which bothered me initially, how can an app not be hosted but be used!!!). So I shall be discussing, in short, about this concept and then come back to the original concern – vulnerabilities in Serverless Apps(Please do skip the first part if you are already aware of it.).
This concept came into beginning at the year 2015(and there are others who claims it to be 2012). This can be called the next stage for virtualization. We can see the journey from physical servers to virtual machines to containers and now the serverless applications. At each stage, the number of instances goes up and the lifespan becomes short.