Topic: itsec

ITOps news digest: Cloudflare’s Flan Scan, OneLogin’s support for AWS Session Tags, and OCF-over-Thread

Cloudflare is open sourcing its in-house lightweight network vulnerability scanner Flan Scan. According to the company, Flan Scan was created after unsuccessful attempts with industry standard scanners. “A little over a year ago, we were paying a big vendor for their scanner until we realized it was one of our highest security costs and many … continue reading

KubeCon: Securing Kubernetes with STRIDE

When you’re architecting your infrastructure around Kubernetes, you need to make sure you’re securing it properly. In a talk at this week’s KubeCon in San Diego, Pushkar Joglekar, security engineer at Visa, explained some of the best practices for securing Kubernetes.  At Visa, the payment workflow boils down to: “Do it fast and with a … continue reading

ITOps news digest: Fairwinds Insights, RedisInsight, and StackRox Kubernetes security platform 3.0

Fairwinds new SaaS platform is launching a free public beta program. Fairwinds Insight is an open-source project for DevOps teams managing multiple Kubernetes clusters. The project is designed to give teams insight into any potential problems. According to the company, it can reduce the time it takes to research, learn and deploy Kubernetes auditing tools; … continue reading

VMware and Carbon Black logos

VMware completes acquisition of cloud-native endpoint protection provider Carbon Black

VMware has officially acquired Carbon Black for $2.1 billion. The company first announced plans to take on the cloud-native endpoint protection provider at the end of August.  “Carbon Black brings us an industry-leading endpoint and workload security platform, with a cloud-native architecture, an AI-powered data lake and a smart, lightweight agent,” said Sanjay Poonen, chief … continue reading

Kubernetes suffers from security flaw

Yesterday, a critical security flaw impacting Kubernetes 1.10 and higher was discovered. The flaw, CVE-2018-1002105, was publicly disclosed by the Kubernetes community and reported through the Kubernetes vulnerability reporting process. According to Red Hat, the flaw could allow malicious actors or unapproved users to escalate privileges on Kubernetes installations, including the company’s own container solution … continue reading

DockerCon: Building and managing containers

Several companies announced new products and functionality at this week’s DockerCon18 conference in San Francisco. Among the announcements were: Red Hat was talking about the initial public release of its Buildah command-line utility for creating or changing Linux container images. Buildah, according to the company, makes the images easier to integrate into build pipelines. Buildah … continue reading

FireMon introduces new global policy controller; delivers frictionless network security management for the hybrid enterprise

FireMon, the leader in network security policy management, today announced FireMon Global Policy Controller (GPC), a new product that enables frictionless security infrastructure management for the hybrid enterprise. FireMon GPC achieves this by bringing together DevOps and other business stakeholders with security managers in a consistent, parallel operating model that improves security and agility while … continue reading

Ad will close in seconds
Continue to site

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!