Cerbos Hub launches to simplify deployment of authorization policies
The authorization company Cerbos has announced the general availability of Cerbos Hub, which is a management system for authoring, testing, and deploying authorization policies using the company’s open-source authorization layer Policy Decision Point (PDP). With PDP, authorization policies are separated from application code, which allows authorization to scale and change as the application’s needs change … continue reading
Druva announces new Threat Hunting capability for getting insights into potential threats
The security company Druva has announced new capabilities to help customers more efficiently investigate and remediate cyber threats. It launched a new Threat Hunting capability for indicators of compromise (IOC) that provides IT and security teams with insights into the gestation, timeline, and impact of potential threats in their environment. According to the company, traditional … continue reading
Red Hat OpenShift 4.16 now available with several new virtualization features
Red Hat has announced the latest version of OpenShift, its Kubernetes-based application development and deployment platform. “Being able to more quickly modernize both infrastructure and applications are crucial capabilities to better support customer needs — but this can’t be done overnight,” said Mike Barrett, vice president and general manager of Hybrid Cloud Platforms at Red … continue reading
Report: Majority of security pros admit to using “shadow SaaS” apps
A recent survey from Next DLP revealed that over the last year, 73% of security professionals have used used “shadow Saas,” or SaaS applications not provided or approved by their IT teams. Further, even though they are using shadow SaaS, they admitted to being aware of the risks of doing so, with the most commonly … continue reading
Siren – ITOps Times Open Source Project of the Week
In an effort to help maintainers of open source projects combat security threats, the Open Source Security Foundation (OpenSSF) has created a mailing list called Siren to enable sharing of information about vulnerabilities. “While consumers and enterprises may have intelligence sharing structures in place, this does not always extend to the upstream open source community. … continue reading
ScienceLogic announces integration with Cisco Intersight
ScienceLogic has announced that its AIOps platform now integrates with Cisco’s data center management solution, Cisco Intersight, which enables customers to easily monitor their Cisco servers. This is one of many updates the company has announced to its platform. It also announced support for OAuth 2.0 for several ServiceNow SyncPacks, which are files that contain … continue reading
New Relic DEM provides insights that help companies improve user experience
New Relic is releasing a Digital Experience Monitoring (DEM) solution to enable companies to improve performance and user experience across mobile, web, and AI apps. New Relic DEM offers real user monitoring (RUM), which provides visibility into all user interactions across web and mobile platforms. Companies can use this information to identify bottlenecks and optimize … continue reading
Microsoft Entra gets several improvements in July update
Microsoft has announced a number of updates to its identity and access management (IAM) solution, Microsoft Entra. The company is starting to roll out user experience updates to the Microsoft Authenticator app. The app will soon categorize key actions, such as credentials configured in the app, additional sign-in methods, and account management options. Microsoft is … continue reading
Cloudflare users can now block AI bots, scrapers, and crawlers by changing one setting
Cloudflare has added a new option in its settings to help its customers easily block AI bots, scrapers, and crawlers with a single click. Companies building generative AI models use web scrapers to get content to train their models with. “Google reportedly paid $60 million a year to license Reddit’s user generated content, Scarlett Johansson … continue reading
IBM and Microsoft partner to help companies modernize security operations
IBM and Microsoft have announced a new partnership designed to help companies modernize their security operations and protect themselves from cloud identity threats. To help companies be better protected against cloud identity threats, the two companies created a new offering based on IBM Consulting’s automation, accelerators, and industry domain knowledge and the Microsoft Entra suite … continue reading
AWS adds ability to group Amazon WorkSpaces virtual desktops into pools of similar users
AWS has just announced that customers can now create pools, or groups, of non-persistent virtual desktops through Amazon WorkSpaces. These pools can then be shared across a group of users, and each user in a pool gets the same applications and experience. According to AWS, users can access the virtual desktops via a browser, desktop … continue reading
Chrome will no longer trust certificates from Entrust starting in November
In a move to strengthen user privacy and security in Chrome, Google has announced that new certificates from the certificate authority (CA) company, Entrust, will no longer be trusted, starting in November. Google cited a “pattern of compliance failures, unmet improvement commitments, and the absence of tangible, measurable progress in response to publicly disclosed incident … continue reading
