container security
TrapX Security Brings Deception Platform to Container Environments
TrapX Security this week announced that its deception platform for misdirecting attacks against IT environments can now be deployed in container environments. Steve Preston, TrapX CEO, says version 7.2 of TrapX DeceptionGrid ...
Misconfigured Argo Workflows Expose K8s to Attack
With the use of Kubernetes growing rapidly among enterprises comes increased opportunities for attackers to exploit the popular container orchestration platform’s weaknesses in security. This week, security specialist Intezer has detected a ...
Aqua Security Survey Surfaces Container Security Knowledge Gap
Aqua Security today published a survey that polled a mix of 150 cloud-native security practitioners and IT executives that suggests awareness of potential container security issue is dangerously low at a time ...
The What and Why of Cloud-Native Security
On the road to embracing DevOps, many IT organizations still depend on traditional security practices, policies and tools that were not built to withstand the modern cloud-native approaches of scaling and complexity ...
Kubernetes Maturity Phase 4: Security, Efficiency and Reliability
In our earlier articles, we introduced the Kubernetes maturity model, discussed how to prepare for Kubernetes, explored the transformation phase, planned deployment and built confidence in successful deployment. Now, you’re ready to ...
Rapid7 Unifies Alcide and DivvyCloud in Single Platform
Rapid7 this week launched an InsightCloudSec platform that combines the cloud security posture management (CSPM) platform it gained with the acquisition of DivvyCloud last year and the Kubernetes security platform it gained ...
Container Security Threats Added to MITRE Attack Framework
Aqua Security is building a Container Framework that will be incorporated into a larger cybersecurity framework that MITRE Corp created to help organizations better defend themselves against cyberattacks. Assaf Morag, lead data ...
Sophos Acquires Capsule8 Security Platform for Linux Containers
Sophos this week announced it has acquired Capsule8, a provider of tools for securing runtimes on Linux servers and container platforms, as part of an effort to expand its current focus beyond ...
Adapting InfoSec for Container Security
Containerization has effectively become the new normal for expediting app delivery and improvements; security concerns surrounding containers don’t seem to be holding back the tide. And rightly so, because the security of ...
Best Practices for Kubernetes Incident Response
Kubernetes is the world’s most popular container orchestrator, used to manage large scale applications running on container engines like Docker. Containers are rapidly replacing virtual machines as the go-to choice for workload ...