Cloud-Native Security
Sigstore Sets Out to Secure Cloud-Native Supply Chain
Open source software (OSS) is pervasive — 90% of companies are now using OSS. But this reliance is a double-edged sword. Amid rising software supply chain attacks, we’re witnessing the fragility of ...
SUSE Integrates Container Security Platform With Rancher
At the KubeCon + CloudNativeCon Europe 2022 conference, SUSE announced it has made the NeuVector container security platform available as an open source product. That platform has also been submitted to the ...
Deepfence Adds Managed Service to Secure Runtime Environments
Deepfence today at the KubeCon + CloudNativeCon Europe 2022 conference unveiled a managed cloud service through which IT teams can discover vulnerabilities in runtime environments. Owen Garrett, head of products and community ...
Oxeye Delivers CNAST Tool to Better Secure Microservices
At the KubeCon + CloudNativeCon Europe 2022 conference, Oxeye today announced general availability of its Cloud Native Application Security Testing (CNAST) tool to pinpoint vulnerabilities in microservices-based applications. The Oxeye platform requires ...
Red Hat Strengthens DevSecOps for OpenShift Platform
Red Hat today made available a preview of patterns for the Red Hat OpenShift platform that promise to make it simpler to secure software supply chains. The patterns, announced at the Red ...
Building Apps in Kubernetes? Think Security Everywhere
Cloud-native development practices are rapidly gaining momentum, especially in Kubernetes, as organizations continue to shift away from legacy technologies to take advantage of the reliability, scalability and portability that a cloud-native stack ...
Container Security Challenges Impacting Pace of App Dev
A global survey finds 96% of respondents reporting their companies are experiencing cloud-native application challenges that are leading to slower deployment cycles, with more than two-thirds (67%) naming security as the top ...
CrowdStrike: DoS Attack Against Russia Uses Containers
CrowdStrike today revealed that it has detected the surreptitious use of containers to launch distributed denial-of-service (DDoS) attacks against IT assets in Russia and Belarus. A Docker honeypot set up by CrowdStrike, ...
CrowdStrike Adds Container Support to Cloud Security Platform
CrowdStrike today launched a cloud-native application protection platform (CNAPP) based on its Falcon Cloud Workload Protection (CWP) offering that can now detect threats aimed at containers, prevent rogue containers from running and ...
CrowdStrike Details LemonDuck Cryptojacking Container Attack Campaign
CrowdStrike has published an alert detailing an active campaign that uses compromised containers to mine for cryptocurrency on Linux platforms launched via a botnet known as LemonDuck. LemonDuck is a cryptomining botnet ...
