Topic: security

CSA releases Cloud Threat Modeling guide

The Cloud Security Alliance (CSA) has released a new Cloud Threat Modeling guide to help provide guidance on threat modeling for cloud applications, their services, and related security decisions.  The guide was written by the CSA Top Threats Working Group. The group hopes that the Cloud Threat Modeling guide will provide organizations with an up-to-date … continue reading

Microsoft acquires CloudKnox Security for privileged access capabilities

Microsoft announced that it acquired the cloud Cloud Infrastructure Entitlement Management (CIEM) provider CloudKnox Security to offer unified privileged access and cloud entitlement management.  “The company’s solution helps organizations right-size permissions and consistently enforce least-privilege principles to reduce risk, and it employs continuous analytics to help prevent security breaches and ensure compliance. This strengthens our … continue reading

ITOps Times Open-Source Project of the Week: MicroK8s

MicroK8s allows for low-ops, minimal production Kubernetes for devs, cloud, clusters, workstations, edge and IoT.  It is a Cloud Native Computing Foundation (CNCF) certified upstream Kubernetes deployment that runs entirely on your workstation or edge device. The project automatically chooses the best nodes for the Kubernetes datastore, and when a cluster database is lost, another … continue reading

IBM adds enhanced data protection to FlashSystem

IBM announced that it is bringing advanced data protection capabilities to the IBM FlashSystem family of all flash arrays to help companies plan for and recover quickly from ransomware and cyberattacks.  IBM Safeguarded Copy, which automatically creates data copies in “immutable snapshots,” will now be integrated into the IBM FlashSystem family. In the event of … continue reading

Report: 94% of organizations have suffered from insider data breaches

A lot of focus is made on hardening systems from outside attacks, but threats from within the company shouldn’t be ignored. Results from Egress’ Insider Data Breach Survey 2021 showed that 94% of organizations have fallen victim to insider data breaches in the last year alone.  The survey was conducted by Arlington Research on behalf … continue reading

Cloud Security Alliance releases Enterprise Architecture Reference Guide v2

The Cloud Security Alliance announced the release of the Enterprise Architecture Reference Guide v2, which provides users with a compilation of every domain and container within the CSA Enterprise Architecture v2.3.  “This reference guide is fundamentally important for risk managers in evaluating opportunities for improvement, creating road maps for technology adoption, identifying reusable security patterns, … continue reading

VMware unveils Anywhere Workspace for distributed organizations

VMware wants distributed organizations to be able to embrace work from anywhere with the release of its Anywhere Workspace. The new solution aims to manage multi-modal employee experience while providing better security at the edge and reducing costs and operational overhead.  “Organizations are facing many challenges, such as ensuring good connectivity for remote employees, monitoring … continue reading

ITOps Times Open-Source Project of the Week: Red-Shadow

Cloud security provider Lightspin developed a new open-source scanner Red-Shadow that reports when user permissions are loosely defined, which opens up an attack path for hackers.  Lightspin released the scanner after it announced the results of its research that discovered a gap between AWS Identity and Access Management (IAM) user group policies that attackers can … continue reading

Report: Fusion of security and network planning is accelerating

The fusion of security and network planning has been accelerating over the past year, according to Aryaka’s recently released 2021 Global State of the WAN report. According to the report, almost a third of companies surveyed are already deploying secure access service edge (SASE) architectures. This close integration of networks and security will become even … continue reading

Aqua Security launches Aqua Cloud Native Security Platform for containers and VMs running on Arm devices

Aqua Security launched a new container runtime security solution for Arm 64-bit environments that enables organizations to protect their high-density workloads on platforms such as AWS Graviton2 instances and more.  “Our customers will be able to continue and accelerate their cloud native journey with Aqua’s support for Arm-based architectures. Through our commitment to supporting the … continue reading

Sequitur Labs expands EmSPARK Security Suite with Base and Advanced packages

Sequitur Labs announced two new options for its EmSPARK Security Solutions with both Base and Advanced packages that allows manufacturers to secure embedded designs for IoT protection. The Sequitur Labs product was essentially broken into two different offerings for people at different stages of their embedded security development.  The Base package provides the essential security … continue reading

pfsense logo

ITOps Times Open-Source Project of the Week: pfSense

This week’s featured project of the week is pfSense, a free network firewall distribution. It is based on the FreeBSD operating system, includes a custom kernel and provides the same or more functionality of common commercial firewalls with no artificial limitations.  It is currently used around the world from companies like Check Point, Cisco PIX, … continue reading

1 2 3 15

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!