Report: The 10 most popular Docker images contain at least 30 vulnerabilities each

While Docker images may be valuable to application container technology, they come at a security cost. A new report reveals the top 10 most popular Docker images each contain at least 30 vulnerabilities. According to the 2019 State of Open-Source Security report by Snyk, an open-source security platform provider, “Docker images almost always bring known … continue reading

Google Kubernetes Engine Sandbox mitigates container escape vulnerabilities

Companies running applications that use untrusted code can experience “container escape,” a vulnerability tracked as CVE-2019-5736, that can hijack the shared host operating system and wreak havoc from there. According to the Information Technology Library, runc used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary within a new … continue reading

Netwrix report: Nearly half of organizations storing PII in the cloud want it back on-premises

Security is near the top of almost every company’s agenda. So much so, that 46 percent of organizations that store customer personally identifiable information (PII) in the cloud are considering moving back to on-premises due to security concerns, according to this year’s Netwrix report on cloud data security. “The report revealed that organizations are misled … continue reading

Microsoft previews Identity Overlay Network to further decentralized identity systems

In an effort to strike a balance between the security and self-ownership of blockchains and the massive scale needed to create Decentralized Identifier (DID) systems, Microsoft announced a preview of ION (Identity Overlay Network). ION is a public, permission-less, open network that anyone can use to create DIDs and manage their Public Key Infrastructure (PKI) … continue reading

Linkerd logo

ITOps Times Open-Source Project of the Week: Linkerd

This week’s highlighted open-source project, Linkerd is a service mesh for Kubernetes and other frameworks. It offers runtime debugging, observability, reliability and security without requiring changes to code. Linkerd works by installing a set of ultralight, transparent proxies next to each service instance. The transparent proxies act as highly instrumented out-of-process network stacks, sending telemetry … continue reading

SAP partners with hyperscalers to move more companies to the cloud

SAP is teaming up with cloud providers Amazon, Microsoft and Google as well as global strategic service partners to walk companies through their transition to cloud-based business innovation. The project called Embrace will tailor the core components to each company based on the language and context of their industry. This includes roadmapping the platform, software, … continue reading

Panoptics now available for multi-cloud and on-premise deployment

Crosscode announced that Panoptics Virtual Appliance is now available on all popular clouds and for On-Premise deployments. Users can deploy on-premise on dedicated hardware within Azure, AWS and other cloud environments to physically separate customer data from other tenants and improve security. Panoptics analyzes the impact of any change at the code level across all … continue reading

SQream launches IoT Edge Partner Innovation Lab

SQream, the developers of a GPU-accelerated data warehouse called SQream DB, announced the launch of its IoT Edge Partner Innovation Lab. “The SQream Nano Partner Innovation Lab will build on the successful results we have with enterprises around the world, and provide an infrastructure for IoT partners who want to leverage our ability to store … continue reading

Cisco announces products and partnerships amid push to Wi-Fi 6

Cisco unveiled several products and partnerships geared toward Wi-Fi 6, the new standard for W-iFi networks.      This includes new access points across the Catalyst and Meraki portfolios that have programmable chipsets and access to industry-leading analytics capabilities. The access points are multilingual and have the ability to communicate with multiple IoT protocols simultaneously. Also … continue reading

Linux Foundation and ETSI find common ground

The Linux Foundation signed a Memorandum of Understanding with ETSI, a creator of IT global standards and the EU-registered European Standards Organization (ESO). The organizations agree that joint communication between code collaborators and the standards community is necessary to foster the collation of open source and standards. Faster information-sharing with the standards community will expedite … continue reading

Platform9 releases three new open-source tools for Kubernetes

SaaS-managed hybrid cloud developer Platform9 today announced Klusterkit, which contains three open-source tools that help developers use production-grade Kubernetes clusters in air-gapped, on-premises environments. Air-gapping is a security measure in which a secure computer network is physically isolated from unsecured networks, such as the public Internet or an unsecured local area network. The three tools … continue reading

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!