The 4 Most Vulnerable Areas of Container Security in 2019

Software containers have become more popular in recent years as many organizations have discovered the benefits of containerization. Unfortunately, as is often the case with rapid advances in technology, container security has been a bit neglected and is often an afterthought. Part of the problem is that some security teams

Read more

Navigating Compliance Challenges in a DevOps World

Less than three months after Kubernetes’ first serious security vulnerability was discovered, news broke out about a new and even more severe container escape vulnerability impacting runC (details can be found here). This latest discovery has once again brought container security concerns to the forefront, with compliance challenges right on

Read more

IBM Cloud Data Shield Brings Data in Use Protection to Container Applications

Building applications that protect data while it is in use has long been a challenge for the world of DevOps. After all, DevOps promotes the concept of fast software iterations, which can introduce security flaws into production systems. IBM aims to put an end to application data security angst in

Read more

Aqua Security Extends Platform Reach

Aqua Security this week extended the security capabilities it provides for serverless computing frameworks by adding the ability to scan functions running on those frameworks for vulnerabilities. In addition, version 4.0 of its namesake container security platform now can detect malware and vulnerabilities in the Linux hosts on which containers

Read more

Twistlock Extends Container Security Platform to VMs

Twistlock announced it has extended the reach of its container security platform to include support for virtual machines running on-premises or in public clouds. In addition, version 19.03 of the company’s namesake container security platform adds a RASP Defender, which makes it possible to deploy Twistlock container security software as

Read more

Alcide Secures Multi-Kubernetes Cluster Environments

Alcide has extended the reach and scope of its container security platform to include multiple clusters and the service mesh employed across them. At the same time, Alcide has bolstered the machine learning algorithms it embeds in its platform to make it easier to identify potential security issues such as

Read more

Securing Container Images in the DevOps World

According to 451 Research, the application container market will experience significant growth over the next five years. In its “2017 Cloud-Enabling Technologies Market Monitor & Forecast report,” the research firm noted that “annual revenue is expected to increase by 4x, growing from $749m in 2016 to more than $3.4bn by

Read more

IBM Aligns With Twistlock on Container Security

Twistlock has extended its container security relationship with IBM to include integration with IBM Cloud Security Advisor, a hub through which IBM consolidates cybersecurity alerts pertaining to potential threats to the IBM Cloud Kubernetes Service. John Leon,  VP of business development and alliances at Twistlock, says this integration extends the

Read more

Latest Container Vulnerabililty Creates Another Tempest in a Security Teapot

As containers grow in popularity, so, too, do security threats The disclosure this week of a vulnerability that could be employed by cybercriminals to overwrite the host runc binary to gain control over a root-level code execution on the host machine is driving organizations to once again re-examine best DevSecOps

Read more

NeuVector Extends Container Security Reach to Service Meshes

As more layers of software get deployed on top of Kubernetes, the same container security platforms employed to secure clusters should be extended to support service meshes as well. With that goal in mind, NeuVector announced today that its namesake container security platform now supports both the Istio and Linkerd2

Read more