Veracode adds container security to application security platform
Veracode expanded its Continuous Software Security Platform with container security functionality. The application security vendor wants to ensure that containers are secured at an early stage.
Veracode develops software for application security testing. According to the organization, containers... Read more
The next target for cybercriminals: cloud containers
The way containers work makes them particularly vulnerable to attack, with wide-ranging consequences.
As digital transformation takes hold in the enterprise community, migrating to the cloud has become a deeply entrenched trend. A big part of this cloud migration has been the widespread adoption... Read more
CNCF: 80% of organizations prefer open-source cloud-native security
Open-source software is the driving force behind digital innovation. It can be argued that the cloud would not be a reality without OSS (open-source software), which has now proliferated into the deepest reaches of cloud-native architecture.
Open-source projects enabling the cloud-native shift (... Read more
SUSE buys NeuVector, strives to solidify container security
SUSE's acquisition of NeuVector aims to provide customers with more open-source functionality for complete end-to-end security for containers and the Kubernetes orchestration platform.
With the acquisition, SUSE is targeting expanded compliance and security functionality for container management... Read more
Google Cloud announces managed continuous delivery service
Google announced Google Cloud Deploy to make continuous delivery to GKE faster, easier, and more reliable. The service is managed and opinionated in its delivery. Deploying container image artifacts into a variety of environments remains difficult to many.
Victor Szalvay, the Google Cloud produc... Read more
Palo Alto Networks details flaws in Microsoft Azure Container Instances
Palo Alto Networks’ research arm, Unit 42, revealed how it found vulnerabilities in the multi-tenant Kubernetes clusters hosted on the Azure Container Instances (ACI). The flaws could have been exploited to execute code on users’ containers, steal data or hijack resources to mine cryptocurrenci... Read more
Qualys brings Cloud Agent to RHEL CoreOS and Red Hat OpenShift
On the one hand, you have Qualys. On the other, you have Red Hat. Now, put your hands together because that's what the two companies just did. In the world of Linux, Red Hat is golden while Qualys' security capabilities are known to be comprehensive.
The two forces are coming together to bring Q... Read more
Unit 42 from Palo Alto Networks finds the first Windows Container malware
Palo Alto Networks revealed that it discovered the first known malware targeting Windows containers.
It has been named Siloscape and uses sophisticated code obfuscation techniques to create backdoors into a Kubernetes cluster running Windows containers that can be exploited later.
Matt Chiodi... Read more
Docker announces updates to tackle security and productivity issues
Docker unveiled Docker Development Environments, a new tool that enables developers to automatically create a virtual instance of their development environment that can be shared with other developers on the same team.
The company announced the product at the online DockerCon Live 2021 event on ... Read more
Palo Alto Networks focuses on container security
Palo Alto Networks is investing heavily to expand its portfolio. This by further developing its own products and acquiring other companies. Container security has played a prominent role in this growth strategy for a number of years now. We spoke to Director Systems Engineering Northern Europe Mike... Read more