VMware today announced it has added a VMware Carbon Black Cloud Container offering that makes it possible to scan containers and Kubernetes configurations within the context of a DevSecOps workflow. Shemer Schwarz, ...

Sophos this week announced it is extending its Cloud Optix service for cloud security posture management (CSPM) to include support for container image scanning. Richard Beckett, senior product marketing manager for public ...

Debugging is a major, critical challenge for software developers. The shift to highly distributed operations in containerized cloud environments over the last year of the pandemic has further complicated the debugging process ...

Secure-by-default settings make it easier (and safer) to onboard cloud-native technologies. And, thankfully, most default security profiles and configurations are, often, quite solid. Take Istio, which is secure by default and built ...

Kubernetes’ drawbacks — the enormous advantages it offers, aside— include missing universal security management features, both for clusters and the containers it was designed to orchestrate. Historically, completely different APIs, tools and ...

Over just two years, breaches caused by cloud misconfigurations exposed 33.5 billion records and generated an estimated $5 trillion in damages. Amid rising cyberattacks and novel vulnerabilities, overlooking cloud and K8s security ...

Jetstack, a unit of Venafi, launched a platform dubbed Jetstack Secure through which IT teams can automate the management of certificates in Kubernetes environments. Matt Bates, Jetstack CTO, says that as more ...

Things are heating up for APIs. API-based startups are catching the eye of investors. Forbes recently called the API economy the “next big thing.” But as they multiply, so do security threats ...

Anchore has updated its container security platform as part of an effort to enable organizations to better secure software supply chains that include Kubernetes clusters. Neil Levine, vice president of products for ...

Trend Micro revealed this week it has encountered a malicious payload within a Docker container; the payload was specifically crafted to escape from a privileged container in a way that would enable ...