Lacework

MARCH 21, 2024

Any security team understands that automation is key to success, especially as they are trying to accomplish more with fewer resources. Attackers steal credentials through various means like phishing attacks and data breaches or by exploiting security vulnerabilities. Automated investigations? That’s real leverage.

How To 109

How To Technical Review Internet Cloud 109

Lacework

APRIL 1, 2024

Ask any security team about their number one challenge, and you’ll quickly realize that no two answers are exactly the same. Whether they’re containing incidents, fixing vulnerabilities, or keeping up with the latest cybersecurity and privacy regulations, one thing unites them all: the pressing need for more time.

Security 60

Security Innovation Resources Cloud 60

Perficient

DECEMBER 26, 2023

Introduction In the dynamic landscape of software development, where Kubernetes has become the linchpin of modern application deployment, ensuring robust security measures is non-negotiable. By emulating real-world scenarios, this method enhances overall security by identifying weak points that might be exploited by malicious actors.

Testing 52

Testing Software Review Weak Development Team Systems Review 52

Prisma Clud

MAY 24, 2023

Prisma Cloud helps accelerate time-to-market securely with our support for Azure Linux container host for Azure Kubernetes Service (AKS). With container-security optimization and acceleration in mind, Prisma Cloud by Palo Alto Networks is delighted to announce our support for container-optimized Azure Linux by Microsoft.

Linux 96

Linux Azure Cloud Software Review 96

Tenable

SEPTEMBER 12, 2023

Microsoft’s September 2023 Patch Tuesday Addresses 61 CVEs (CVE-2023-36761) Microsoft addresses 61 CVEs including two vulnerabilities that were exploited in the wild. of the vulnerabilities patched this month, followed by elevation of privilege (EoP) vulnerabilities at 27.9%. It was assigned a CVSSv3 score of 6.2

LAN 120

LAN Windows 3D Azure 120

Lacework

SEPTEMBER 18, 2023

Microsoft’s threat matrix for Kubernetes offers a detailed framework outlining potential security risks associated with Kubernetes deployments. In this blog, we explore how the Lacework platform helps cloud users effectively detect Kubernetes threats and mitigate them promptly.

eBook 52

eBook Compliance Cloud AWS 52

Prisma Clud

APRIL 17, 2024

Prisma Cloud has added the Telecommunications Security Act to its list of out-of-the-box compliance standards. With this release, public electronic communications networks and services in the UK can assess their multicloud security posture against requirements defined in the Telecommunications Security Act Code of Practice.

Telecommunications 59

Telecommunications Compliance Cloud Policies 59

Prisma Clud

SEPTEMBER 21, 2023

The traditional network security model has long relied on a simple yet increasingly outdated concept — the secure perimeter. The secure perimeter approach assumes everything inside a network is inherently trustworthy and focuses security efforts on keeping threats outside a defined boundary. million in 2023.

Cloud 105

Cloud Network Policies Machine Learning 105

Palo Alto Networks

APRIL 11, 2023

Who is responsible for making 5G secure? Security for 5G networks does not fall solely in the lap of the 5G radio and packet core vendors, nor does it fall solely in the lap of the enterprises embracing 5G. Rather, 5G security is a shared responsibility, much like the one AWS has made famous for its cloud services.

Network 101

Network Wireless Enterprise Policies 101

Tenable

NOVEMBER 27, 2023

When implementing and configuring a cloud security solution, it’s easy to get overwhelmed by the sheer volume of “things” to monitor. These include web applications running on Kubernetes infrastructure, including IaaS and container resources, and the identities, both human and machine related, and more.

Cloud 76

Cloud DevOps Software Review Infrastructure 76

The Crazy Programmer

JULY 27, 2021

It has changed the way in which developers approach security and creating code for applications. It has led to projects being secured from start to finish and has increased productivity among developers. DevSecOps stands for Development, Security, and Operations. This can help them create more secure code faster.

Software Review 279

Software Review Malware Microservices Technical Review 279

d2iq

MARCH 1, 2023

In General Dynamics Information Technology’s 2022 report, “ Agency Guide to Zero Trust Maturity ,” 63% of respondents from federal civilian and defense agencies said they believed their agencies would achieve specific zero trust security goals by the end of fiscal 2024.Although

Software Review 78

Software Review Authentication Firewall Network 78

d2iq

JANUARY 5, 2023

DevSecOps–short for development, security, and operations–is a trending practice that introduces security testing, triage, and risk mitigation as early as possible in the software development lifecycle, rather than bolting on security in the final stages. How Did DevSecOps Emerge? How Does DevSecOps Work?

Engineering 81

Engineering Software Review DevOps Compliance 81

d2iq

JANUARY 11, 2023

In 2022, Kubernetes continued to mature and gain widespread adoption as it crossed the chasm into the mainstream. Following are the predictions we see for Kubernetes in 2023. Because Kubernetes is a relatively new technology, the talent pool of skilled Kubernetes engineers is limited.

DevOps 111

DevOps Budget Survey Infrastructure 111

Prisma Clud

JUNE 20, 2023

According to the latest findings from Unit 42’s Cloud Threat Report, Volume 7: Navigating the Expanding Attack Surface , an impressive 53% of cloud workloads now find their home on public clouds. The Importance of Real-Time Protection Organizations now understand that security visibility isn’t enough.

Cloud 105

Cloud Development Team Review Serverless Linux 105

Tenable

NOVEMBER 21, 2023

Acronyms are an analyst's best friend but often cause confusion to end users , resulting in control gaps and business critical systems being left vulnerable to cyberattacks. They run on cloud native platforms like Kubernetes and containers, use service-based technologies to deliver functions such as databases (e.g.

Cloud 70

Cloud Compliance Azure DevOps 70

Xebia

APRIL 27, 2023

For security, they are extremely helpful in preserving deterministic application behaviourThat’sne coI’lltly. The following blogs will be about container security and tools to help secure containers during the software development lifecycle. It eases the continuous development and deployment lifecycle.

Linux 130

Linux Software Review Technical Review Virtualization 130

Tenable

APRIL 19, 2024

Check out recommendations for securing AI systems from the Five Eyes cybersecurity agencies. 1 - Multinational cyber agencies issue best practices for secure AI deployment Looking for best practices on how to securely deploy artificial intelligence (AI) systems? Meanwhile, a new open-source tool aims to simplify SBOM usage.

Artificial Inteligence 74

Artificial Inteligence Trends Technical Advisors Analysis 74

Prisma Clud

NOVEMBER 22, 2022

That’s where Kubernetes comes in. Kubernetes has quickly risen in popularity as one of the most popular cloud technologies for many good reasons—scalability, stability, cost (in some cases) and when done right, security. One of the big challenges with containerization over VMs is security because they are harder to isolate.

Infrastructure 91

Infrastructure Software Review Policies Systems Review 91

Palo Alto Networks

SEPTEMBER 9, 2021

The Unit 42 Threat Intelligence team has identified the first known vulnerability that could enable one user of a public cloud service to break out of their environment and execute code on environments belonging to other users in the same public cloud service. What Azurescape Tells Us About Cloud Security.

Azure 87

Azure Cloud Infrastructure Research 87

AWS Machine Learning - AI

JANUARY 26, 2024

Many customers are looking for guidance on how to manage security, privacy, and compliance as they develop generative AI applications. Many customers are looking for guidance on how to manage security, privacy, and compliance as they develop generative AI applications.

Artificial Inteligence 117

Artificial Inteligence Generative AI Security Applications 117

Perficient

JANUARY 27, 2023

DevSecOps is an approach to software development that emphasizes security as a critical aspect of the development process. It is a combination of development (Dev), security (Sec), and operations (Ops) practices that work together to build, test, and deploy secure software.

Tools 111

Tools Software Review Open Source SDLC 111

Palo Alto Networks

DECEMBER 11, 2020

CN-Series is the industry’s first containerized Next-Generation Firewall (NGFW) designed specifically for Kubernetes environments and addresses growing container usage. With CN-Series, competitive organizations can rapidly secure containerized applications and workloads – without slowing the speed of development.”. Runtime security.

Firewall 98

Firewall eBook Virtualization Network 98

Palo Alto Networks

JUNE 17, 2020

Container adoption is on a serious rise, which is why we’re releasing CN-Series , the containerized version of our ML-Powered Next-Generation Firewall (NGFW), designed specifically for Kubernetes environments. For example, our researchers deployed a containerized version of Drupal 8 fully secured by cloud-native security tools in AWS.

Firewall 83

Firewall Malware Network Policies 83

Lacework

JANUARY 10, 2023

The role of CISO is one of the most important in any organization, and one that holds some of the most significant responsibilities: keeping people and sensitive data safe and secure. CISOs and security leaders are not only some of the most vital players in a business, but also face many unique challenges.

Hotels 135

Hotels Serverless Innovation Cloud 135

Prisma Clud

OCTOBER 19, 2023

First, let's examine the challenges of risk remediation in cloud security. Challenges in Modern Security The evolution of the app, with its many gains, remains a double-edged sword. The Industry's Incomplete Response Security vendors have responded with purpose-built solutions that address only parts of the security problem.

Software Review 80

Software Review Cloud Weak Development Team DevOps 80

d2iq

FEBRUARY 2, 2022

Security Is Mission-Critical The level of security an organization maintains can have a dramatic impact on the bottom line. Supply Chains Targeted Along with malicious threat actors and insider threats, the NSA/CISA report cites supply chain security as one of the major areas of concern.

Guidelines 64

Guidelines Meeting Authentication Firewall 64

Lacework

MAY 26, 2022

Kubernetes and the containers it manages represent a broad surface area that needs to be protected with layered defenses. Lacework is excited to announce that our integration with Kubernetes admission controller is now generally available to all customers to increase visibility and protection in your Kubernetes environment.

Policies 52

Policies Compliance Cloud Resources 52

Prisma Clud

NOVEMBER 7, 2023

In complex cloud-native environments, security teams must protect an increasing number of applications. Limited resources make prioritizing and contextualizing cloud security risks a challenging task, especially when aligning them with the appropriate applications. In the end, cloud security teams face the same dilemma.

Applications 59

Applications Cloud Resources Groups 59

Tenable

NOVEMBER 11, 2022

Get the latest on staffing challenges; nation-state assaults on critical infrastructure; supply chain security tips; ransomware weak links; Kubernetes security; and more! . That’s one finding from the “ 2022 Security Budget Benchmark Report ” by IANS Research and Artico Search, which is based on a survey of 502 CISOs in the U.S.

Budget 52

Budget Software Review Weak Development Team Small Business 52

Prisma Clud

MARCH 18, 2024

For starters, you can visit us at booth #820 where we can show you how Prisma Cloud accelerates business transformation with shift-left prevention, secure cloud configurations, and runtime protection in a single, unified security platform. In-Depth Cloud Security Learning—Booth #820 Have some time to spare between sessions?

Google Cloud 72

Google Cloud Cloud Network Infrastructure 72

Lacework

JUNE 2, 2022

For years, Lacework has helped security teams understand what’s happening in their workloads via an agent that runs on Linux operating systems. The lightweight agent provides continuous monitoring and security for running cloud workloads, including applications, containers and hosts. . Lacework workload security capabilities.

Windows 52

Windows Linux Systems Review AWS 52

Prisma Clud

JANUARY 24, 2023

How do you secure Kubernetes? Part of the answer is to identify and address security risks within the various components of Kubernetes itself as well as their configurations. But the other part of the key to Kubernetes security—and the one that is easier to overlook—is the DevOps lifecycle.

DevOps 52

DevOps Software Review Systems Review Infrastructure 52

Tenable

APRIL 24, 2023

The use of Kubernetes introduces complexity to the modern attack surface and requires a different approach to security than traditional IT infrastructure. Security teams need a base understanding of Kubernetes architecture, configurations and deployment processes to effectively manage risk. Here’s what you need to know.

Software Review 52

Software Review Policies Systems Review Technical Review 52

Prisma Clud

JUNE 13, 2023

All software supply chain attacks share a core trait: they allow a threat actor to break into an organization’s IT estate by exploiting software vulnerabilities created by entities other than the organization. What’s more, every business is vulnerable to software supply chain attacks. You’re now at risk of a supply chain attack.

Software 59

Software Open Source How To Infrastructure 59

d2iq

MAY 22, 2023

In this webinar (May 25, 1:00 pm EST) you will learn from GDIT DevSecOps experts why DKP enables system integrators to more easily provide military-grade security, including zero trust. government’s next-generation security strategy centers on achieving zero trust.

Guidelines 52

Guidelines Open Source Government Strategy 52

Lacework

SEPTEMBER 8, 2022

Kubernetes is quickly becoming the leading container orchestration and management technology. In fact, 94% of respondents admitted to experiencing a security incident in their K8s environment in the last 12 months, according to the State of Kubernetes Security Report. . But you do want to start somewhere. .

Authentication 52

Authentication Load Balancer eBook Cloud 52