DevSecOps 7th annual Community Survey results
Wednesday, April 15, 2020 by Brittany Hainzinger
Sonatype published findings from its seventh annual DevSecOps Community Survey, based on responses from 5,045 software engineering professionals. The survey, developed and conducted in partnership with Carnegie Mellon’s Software Engineering Institute, CloudBees, DevOps Institute, DevOps.com, DevSecOps Days, NowSecure, Security Boulevard, Verica, and All Day DevOps...
This DDoS report could help you avoid a security disaster
Thursday, January 10, 2019 by Christian Hargrave
MazeBolt Technologies, the company offering DDoS threat assessment, has released ”The State of DDoS Protection Report,” the first global independent report about DDoS mitigation effectiveness.
”Since DDoS mitigation started in the late 1990s, enterprises have had little to no visibility on how effective their DDoS mitigation actually is,” said...
Building secure IoT AI Blockchain apps with PiQube
Tuesday, January 8, 2019 by Christian Hargrave
NetObjex, Inc., a provider of Digital Operating Platforms for Smart Products, has announced it will be introducing a revolutionary new IoT-AI-Blockchain gateway device at the Consumer Electronics Show.
PiQube (pronounced "Pie-Cube") will be launched at the CES 2019 Event from January 8th to the 11th at the Las Vegas Convention Center, Nevada. This sta...
Open source, Kubernetes, and developers, according to Abby Kearns
Monday, December 17, 2018 by Richard Harris
The news of IBM's pending acquisition of Red Hat and Microsoft’s acquisition of GitHub may signal more industry consolidation to come. We recently had a conversation with Abby Kearns, executive director at Cloud Foundry, about the significance of these mega deals and why she believes 2019, will be the year of consolidation. Abby has a unique perspective leadin...
Container security considerations for developers
Monday, October 29, 2018 by Richard Harris
On the path to a secure digital business, secure service containers bring the best of agility and security to development teams – a growing concern for companies from startups to the Fortune 500. By moving the security concern out of the application layer into an encompassing container platform, one provides a very elegant solution to significantly reduced attack ...
DevOps practices more likely to integrate automated security
Saturday, April 21, 2018 by Christian Hargrave
Sonatype published findings from its 5th annual DevSecOps Community Survey of 2,076 IT professionals. The survey shares practitioner perspectives on evolving DevSecOps practices, shifting investments, and changing perceptions. Survey respondents with mature DevOps practices were 338% more likely to integrate automated security than organizations with no DevOps pra...
Tips for securing container deployments
Friday, September 1, 2017 by Richard Harris
Container deployments are still susceptible to the regular threats that other types of deployments are - including DDoS and cross-site scripting attacks. In fact, hackers often take advantage of compromised containers to scan sensitive data, download malware, or privilegeunauthorized access to any of your containers, hosts or data centers.Fei Huang is the CEO of NeuVect...
Cloud native app firewall Twistlock 2.1 launches
Monday, July 17, 2017 by Christian Hargrave
Twistlock, a provider of cloud container security solutions, has announced the availability of Twistlock 2.1. The latest release of their flagship product includes a first of its kind cloud native app firewall, vulnerability risk ranking that uses knowledge of an enterprise’s unique environment to prioritize what to fix first, a brand new dashboard and integrated secret...
New release of Aqua security platform includes secrets management
Friday, February 3, 2017 by Christian Hargrave
Aqua Security, a platform provider for securing containerized applications, has announced the release of version 2.0 of its Container Security Platform (CSP). A major requirement for securing containerized applications is ensuring that containers can only communicate within their permitted network segment, limiting the “blast radius” in case of an attack. The challenge ...
NeuVector has a new approach to securing Docker containers
Wednesday, February 1, 2017 by Richard Harris
NeuVector has announced the launch and availability of a new approach to securing Docker containers. With constant behavioral learning automatically applied to security policies for containers, the platform secures containers where they have been most vulnerable: in production environments where they are constantly being deployed, updated, moved, and scaled across hosts...
Docker predicts much opportunity for anyone with CaaS expertise in 2017
Monday, December 19, 2016 by Richard Harris
Rising confidence in container security, to the point that developers consider containers more secure than alternative technologies, will drive an increase in the use of CaaS, displacing legacy PaaS approaches to application development and deployment. This requirement for integrated security at every phase of the software supply chain will rise to the surface in the up...
Aqua Security Announces $9M in Series A Funding Led by Microsoft
Tuesday, September 27, 2016 by Christian Hargrave
Aqua Security announces it has secured US$9 million in Series A funding, led by Microsoft Ventures. Cybersecurity luminary and investor Shlomo Kramer will be joining Aqua’s Board of Directors. Aqua’s seed investors TLV Partners and Mr. Kramer also participated in this round of funding, bringing Aqua’s total investment to date to US$13.5 million.Aqua was founded in ...
Hewlett Packard Enterprise Introduces New Application Security Solutions
Monday, September 19, 2016 by Richard Harris
Hewlett Packard Enterprise (HPE) has introduced the HPE Fortify Ecosystem and Fortify on Demand (FoD) continuous application monitoring service. The online marketplace and service are designed to help organizations create secure applications by naturally integrating security testing processes and resources throughout the fast-paced software development lifecycle (SDLC)....
Aqua Security Launches Container Security and Compliance Platform
Wednesday, May 18, 2016 by Richard Harris
Aqua Security (formerly Scalock) has announced the availability of its Aqua Container Security Platform for securing containerized environments and providing control over the security and compliance posture of software containers.The platform provides the ability to automate and improve container security and compliance posture, control user access, and monitor usage in...
Twistlock Releases New Security Platform for Container Environments
Thursday, May 12, 2016 by Richard Harris
Twistlock has announced the release of Twistlock Runtime, a set of automated capabilities that defend against active threats targeting container environments. The platform is designed specifically to detect and stop sophisticated runtime attacks – including APTs and zero-day exploits – against containerized applications. Twistlock Runtime is a component within the ...
Twistlock Offers Small Development Firms Free Version of its Container Security Suite
Friday, February 19, 2016 by Stuart Parkerson
Twistlock is releasing a free version of its signature Container Security Suite that is aimed at providing individual developers and small organizations with the ability to try out containerization. The free “Developer’s Edition” is designed to help individual developers or small companies that are just getting started with container technologies. It opens up the i...
A Discussion on Container Security with Twistlock CEO Ben Bernstein
Thursday, December 3, 2015 by Richard Harris
We recently visited with Twistlock CEO Ben Bernstein to talk about his company’s Twistlock Container Security Suite and the recent announcement of its relationship with Google through the Twistlock for Google Cloud Platform integration with Google Container Engine and Container Registry.Twistlock came out of stealth earlier this year and on November 10 the company annou...
VMware Releases Two Previews of Products for Docker Containerized Applications
Monday, July 6, 2015 by Richard Harris
To help companies build, deploy and run cloud-native applications, VMware has released technology previews of two new Docker tools - AppCatalyst and Project Bonneville,AppCatalyst is a technology preview of an API and Command Line Interface (CLI)-driven hypervisor that offers developers a way to replicate a private cloud locally on their desktop for building and t...