Kubernetes

July 25, 2021 by Pierluigi Paganini

Crooks target Kubernetes installs via Argo Workflows to deploy miners

Threat actors target Kubernetes installs via Argo Workflows to cryptocurrency miners, security researchers from Intezer warn. Researchers from Intezer uncovered new attacks on Kubernetes (K8s) installs via misconfigured Argo Workflows aimed at deploying cryptocurrency miners. Argo Workflows is an open-source, container-native workflow engine designed to run on K8s clusters. The experts discovered Argo Workflows instances with […]

The post Crooks target Kubernetes installs via Argo Workflows to deploy miners appeared first on Security Affairs.

July 24, 2021 by Industry News

S&I releases AI building security management system built on Microsoft Azure

S&I Corporation has released “atxpert (‘at’+’expert’) AI Viewer”, a new AI building security management system based on Microsoft Azure, TnM Tech’s Ghost-I AI edge computing and Scenera’s NICE PaaS, a managed Kubernetes service built on…

July 22, 2021 by Industry News

Veeam reports 26% growth in Q2’2021 for its data protection solutions

Veeam Software announced another quarter of double-digit growth with an annual recurring revenue (ARR) increase of 26% year-over-year (YoY) for Q2’21. Veeam delivered more than 20 new product releases including significant enterprise-grade feature upda…

July 21, 2021 by Industry News

Styra DAS extends OPA policy-as-code guardrails to public, private and hybrid cloud configurations

Styra announced new cloud infrastructure support via Terraform, extending Styra Declarative Authorization Service (DAS) guardrails to storage, network and compute resource configuration in public clouds including AWS, GCP and Azure. With this addition,…

July 21, 2021 by Industry News

Scale Computing collaborates with IBM to help enterprises adopt an edge computing strategy

Scale Computing announced a collaboration with IBM that will help organizations adopt an edge computing strategy designed to enable them to move data and applications seamlessly across hybrid cloud environments, from private data centers to the edge. S…

July 21, 2021 by Industry News

Sysdig acquires Apolicy to help customers secure Infrastructure As Code and automate remediation

Sysdig announced intent to acquire Apolicy to shift security further left and expand the Sysdig offering to include Infrastructure as code (IaC) security. Sysdig customers secure the DevOps cycle from build through production. Apolicy complements these…

July 21, 2021 by Industry News

ionir announces Mike Wall as CEO

ionir announced Mike Wall as its new chief executive officer. The move comes as the company experiences rapid growth in North America and globally, accelerated by the launch of its CI/CD pipeline acceleration solution. Wall, who has extensive experienc…

July 17, 2021 by Industry News

Mavenir deploys Open vRAN software in Deutsche Telekom O-RAN Town

Mavenir announced the deployment of Open vRAN, integrated with massive MIMO (mMIMO) Active Antenna Units (AAU), as part of Deutsche Telekom’s initiative, “O-RAN Town.” MAVair Open vRAN provides the cloud-native, fully containerized 4G and 5G baseband f…

July 15, 2021 by Industry News

Platform9 Managed KubeVirt unifies virtual machines and Kubernetes stacks

Platform9 launched Platform9 Managed KubeVirt. Platform9 Managed KubeVirt (PMK) is the managed KubeVirt solution to offer a unified platform to run virtual machines (VMs) alongside containers. “Traditional virtualization solutions are expensive and man…

July 15, 2021 by Industry News

Actian Zen 15 delivers multi-platform support for secure data management from edge to cloud

Actian announced the general availability of its new Zen V15 embedded database for mobile and IoT. Actian Zen V15 addresses the demanding needs of today’s on-premise, cloud, mobile, and IoT application developers by providing persistent local and distr…

July 12, 2021 by Industry News

D2iQ Kubernetes Platform now available in the Microsoft Azure Marketplace

D2iQ announced the availability of the D2iQ Kubernetes Platform (DKP), including D2iQ Kommander, D2iQ Konvoy, and D2iQ Kaptain, in the Microsoft Azure Marketplace, an online store providing applications and services for use on Azure. D2iQ customers can…

July 8, 2021 by Help Net Security

85% of organizations are yet to hit the cloud native technologies adoption milestone

Despite high adoption rates of cloud native technologies in recent years, enterprises have yet to cross the chasm to full adoption, but they’re quickly moving in that direction, according to initial results of a survey released by Canonical. The report…

July 4, 2021 by Industry News

BlueBarricade achieves new performance levels for high-speed enterprise blockchain

The blockchain accelerator – developed on IBM Blockchain Platform by Sweden-based software house BlueBarricade Blockchain & AI Technology AB – has achieved new performance levels in the global market for high-speed enterprise blockchain…

July 2, 2021 by Dora Tudor

GRU Russian Hackers Are Using Kubernetes to Run Brute Force Attacks

NSA recently released a new advisory, in which it states that the Russian GRU’s 85th Main Special Service Center (GTsSS), military unit 26165, has been using a Kubernetes cluster since 2019 in order to perform password spray attacks on US and for…

July 1, 2021 by Industry News

MariaDB partners with AWS to bring MariaDB SkySQL to the cloud

MariaDB announced a collaboration with Amazon Web Services (AWS) to bring MariaDB SkySQL to the cloud, ensuring massive scalability and availability for businesses deploying high-performance database-as-a-service (DBaaS) on AWS. The collaboration enabl…

July 1, 2021 by Tripwire Guest Authors

How Dockershim’s Forthcoming Deprecation Affects Your Kubernetes

Container orchestration platform Kubernetes announced in December 2020 that its third and final release, Kubernetes v1.20, would deprecate dockershim and subsequently Docker as a container runtime. This deprecation has brought multiple changes that adm…

June 29, 2021 by Industry News

Red Hat OpenShift 4.8 helps organizations accelerate the creation of new cloud-native applications

Red Hat announced Red Hat OpenShift 4.8, the latest version of the enterprise Kubernetes platform. Providing a powerful foundation to develop and connect diverse workloads across the hybrid cloud, Red Hat OpenShift 4.8 helps organizations accelerate th…

June 28, 2021 by Industry News

Cloudify announces collaboration to create an ‘agile-first’ approach to 5G network slicing

Cloudify recently announced a collaboration with Amazon Web Services (AWS), Intel and Capgemini Engineering dedicated to streamlining transformation process of telcos and enterprises to public cloud based infrastructure using open source cloud native a…

June 26, 2021 by Industry News

Taos unveils service to help companies accelerate containerized application environment adoption

As digital transformation initiatives continue to accelerate the cloud journey for many organizations, there is a growing need for network agility to support app modernization and hybrid cloud environments. At the same time, companies are looking to im…

June 26, 2021 by Industry News

Zettaset XCrypt Kubernetes Encryption now available on the VMware Marketplace

Zettaset announced that XCrypt Kubernetes Encryption is available on the VMware Marketplace. VMware Marketplace enables customers to discover and deploy compatible, validated third-party solutions to VMware environments. Once validated, partners can ea…

June 23, 2021 by Industry News

LogDNA Spike Protection gives organizations control over fluctuations in data and spend

LogDNA unveiled Spike Protection to give companies more control over fluctuations in their data and spend. With these new capabilities, development and operations teams have the freedom to rapidly deploy applications with guardrails in place to know if…

June 23, 2021 by Industry News

Red Hat Process Automation helps orgs automate complex business decisions and procedures

Red Hat announced new end-to-end Kubernetes-native decision management capabilities as part of the latest release of Red Hat Process Automation. Based on the open source Kogito project, the new capabilities enable individual business decisions to be cr…

June 23, 2021 by Industry News

Aqua Trivy chosen as the default scanner for GitLab Auto DevOps

Aqua Security announces that Aqua Trivy is now the default scanner for GitLab Auto DevOps. Customers can now automatically scan the GitLab CI pipeline for OS package vulnerabilities. This change will take place as part of GitLab’s 14.0 release an…

June 10, 2021 by Dora Tudor

A Series of Cryptomining Attacks Are Targeting Kubernetes clusters

The attacks on the Kubernetes clusters are running Kubeflow machine learning (ML) instances in an attempt to deploy malicious containers used to execute cryptomining for Monero and Ethereum cryptocurrency. It looks like the attack started to take place…

June 8, 2021 by Kaylin Trychon

Verifiable Supply Chain Metadata for Tekton

Posted by Dan Lorenc, Priya Wadhwa, Open Source Security TeamIf you’ve been paying attention to the news at all lately, you’ve probably noticed that software supply chain attacks are rapidly becoming a big problem. Whether you’re trying to prevent thes…

May 12, 2021 by Industry News

SnapLogic adds API management and anomaly detection capabilities

SnapLogic announced new features and enhancements that boost user productivity and improve platform performance and reliability, helping technical and non-technical development teams realize faster time-to-value from integrations. Headlining the new fe…

May 12, 2021 by Industry News

Confluent for Kubernetes brings cloud-native capabilities to data streams in private infrastructures

Confluent announced Confluent for Kubernetes, a platform purpose-built to bring cloud-native capabilities to data streams in private infrastructures. To make it easier and faster to harness the value of data in motion across an entire organization, Con…

May 7, 2021 by Industry News

LogDNA Browser Logger empowers developers to more efficiently debug web applications

LogDNA launched a new browser logging capability, which makes it easier for full-stack and frontend developers to ingest frontend log data in LogDNA to more efficiently debug web applications. The code running on end-user devices has become increasingl…

May 7, 2021 by Industry News

MariaDB updates MariaDB SkySQL cloud database, expands support for AWS

MariaDB announced major new updates to MariaDB SkySQL cloud database, including expanded support for Amazon Web Services (AWS). With this release, SkySQL gains new strength with transparent high availability that immunizes applications against database…

May 5, 2021 by Help Net Security

Kubernetes adoption continues to grow

Portworx released findings from its survey which assesses the mass adoption and evolution of Kubernetes usage among enterprise users in the last 12 months, in addition to the impact of the pandemic on IT users’ attitudes towards their jobs. The finding…

May 5, 2021 by Industry News

Accurics open source project Terrascan integrates with the Argo Project to enhance cloud security

Accurics announced that its open source project Terrascan, which enables teams to detect compliance and security violations across Infrastructure as Code (IaC), now integrates with the Argo Project. This integration, coupled with the new Terrascan admi…

May 4, 2021 by Industry News

TrilioVault for Kubernetes 2.1 offers visibility and insights into Velero backups

Trilio announced the availability of TrilioVault for Kubernetes (TVK) 2.1, the latest release of its cloud-native backup and recovery platform that enables restoration and mobility of entire Kubernetes workloads on-demand. TrilioVault for Kubernetes 2….

May 4, 2021 by Industry News

Sysdig adds detailed audit logs for runtime detection and response for AWS Fargate

Sysdig announced runtime detection and response to secure AWS Fargate, a serverless compute engine for containers from Amazon Web Services (AWS), an expansion of Sysdig’s cloud security capabilities. AWS Fargate has continued to increase in popularity …

May 4, 2021 by Industry News

DataStax K8ssandra now available on any Kubernetes environment

DataStax announced that K8ssandra, an open-source distribution of Apache Cassandra on Kubernetes, is available on any Kubernetes environment including distro-specific integrations for Amazon Elastic Kubernetes Service (Amazon EKS), Google Kubernetes En…

May 4, 2021 by Industry News

Codefresh names Kiersten Gaffney as VP Marketing

Codefresh announced that Kiersten Gaffney, a seasoned marketing executive for enterprise open source software companies, has been named VP Marketing. In this role, Gaffney will drive Codefresh’s strategy, brand management, demand and lead generation, a…

May 3, 2021 by Zeljka Zorz

Kubestriker: A security auditing tool for Kubernetes clusters

Kubestriker is an open-source, platform-agnostic tool for identifying security misconfigurations in Kubernetes clusters. It performs a variety of checks on a range of services and open ports on the Kubernetes platform, helps safeguard against potential…

May 3, 2021 by Industry News

Red Hat OpenShift features help orgs reduce friction between development and operations teams

Red Hat announced the general availability of OpenShift GitOps and OpenShift Pipelines, new features of Red Hat OpenShift. These capabilities help organizations to further reduce friction between development and operations teams by streamlining applica…

May 3, 2021 by Zeljka Zorz

MITRE ATT&CK v9 is out and includes ATT&CK for Containers

The Mitre Corporation has released the ninth version of its ATT&CK knowledge base of adversary tactics and techniques, which now also includes a newly created ATT&CK matrix for containers. Source: MITRE MITRE ATT&CK v9 ATT&CK covers…

May 1, 2021 by Industry News

Armory launches Armory Minnaker, a virtual machine that speeds up software deployments

Armory introduced Armory Minnaker, a virtual machine leveraging K3s and the Armory Operator to enable software deployments in only 10 minutes instead of 10 days. Already thoroughly tested by some of the largest companies in the world, including Netflix…

April 29, 2021 by Eric Avena

Center for Threat-Informed Defense teams up with Microsoft, partners to build the ATT&CK® for Containers matrix

Microsoft is happy to have contributed and worked closely with the Center for Threat-Informed Defense and other partners to develop the MITRE ATT&CK® for Containers matrix.

The post Center for Threat-Informed Defense teams up with Microsoft, partners to build the ATT&CK® for Containers matrix appeared first on Microsoft Security .