Cloudsmith at the Kubecon + CloudNativeCon Europe 2025 conference today added real-time vulnerability scanning along with an ability to automate the signing for container images, as they are cached using the open-source ...

Tel-Aviv’s Wiz Research team says it has identified a series of unauthenticated Remote Code Execution (RCE) vulnerabilities in the Ingress Nginx Controller for Kubernetes.  ...

Chainguard loves to talk about reducing “developer toil”, the company is clearly keen to present itself as a turnkey solution for reducing threat surface areas and patching burdens on engineering tea ...

Aviatrix has launched a Kubernetes firewall designed to specifically address the unique requirements of cloud-native computing environments that typically consume ten times as many IP addresses than legacy platforms ...

In containerized environments security risks can exist in three areas: Vulnerabilities in software, shadow containers and deployment problems ...

Horizon3.ai has announced the release of its NodeZero Kubernetes Pentesting product, available to all users of its NodeZero platform ...

Unlike traditional models that grant implicit trust based on network location, zero-trust assumes that no entity should be trusted by default ...

Company releases ‘Am I Isolated’, an open source container security benchmark and Rust-based container runtime scanner ...

As we approach SigstoreCon at KubeCon + CloudNativeCon, where experts will share their insights, let's reflect on Sigstore and its impact ...

Given the complex dependencies of container images, which can rely on other container images with potential vulnerabilities, it is crucial for developers to proactively identify and address container security vulnerabilities before deployment ...