The latest edition of the State of Container and Kubernetes Security Report finds that 44% of respondents have delayed deploying cloud-native applications because of security concerns, delaying the deployment of cloud-native applications into production. StackRox surveyed more than 540 IT professionals for this third version of its industry-first report. Roughly 25 percent of respondents serve … continue reading
CoreOS Container Linux will reach its end-of-life on May 26, 2020 and will no longer receive updates. Fedora CoreOS is the official successor to CoreOS Container Linux. Fedora CoreOS is built for running containerized workloads securely and at scale and It combines the provisioning tools and automatic update model of Container Linux with the packaging … continue reading
Red Hat announced the release of Red Hat OpenShift Container Storage 4 to deliver an integrated, multi-cloud experience to Red Hat OpenShift Container Platform users. According to the company, Red Hat OpenShift Container Storage 4 offers greater abstraction and flexibility so that customers can have the freedom to choose data services across multiple public clouds, … continue reading
Container security company NeuVector has extended its security offerings with AWS Cloud. New AWS Cloud integrations include AWS Elastic Container Service for Kubernetes (AWS EKS), AWS ECS, and AWS App Mesh. NeuVector also announced a number of new features, such as Kubernetes ConfigMaps, process and file system blocking, process history recording, multi-layer image scanning, and … continue reading
While Docker images may be valuable to application container technology, they come at a security cost. A new report reveals the top 10 most popular Docker images each contain at least 30 vulnerabilities. According to the 2019 State of Open-Source Security report by Snyk, an open-source security platform provider, “Docker images almost always bring known … continue reading
Companies running applications that use untrusted code can experience “container escape,” a vulnerability tracked as CVE-2019-5736, that can hijack the shared host operating system and wreak havoc from there. According to the Information Technology Library, runc used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary within a new … continue reading
Container security company StackRox launched three new features for its StackRox Container Security Platform today — deployment-centric visibility, multi-factor risk profiling and network policy management — which the company hopes will help address difficulties in intercontainer communication and monitoring in Kubernetes deployments. “Deployed as a set of containers using Kubernetes YAML files or Helm charts, … continue reading
Building applications had rapidly become the easy part of development. Whether on the web or mobile, these applications need a place to live, and that place is constantly changing. From local servers in closets to colocation facilities to the cloud, we’ve seen rapid change over just the last few years. Now we have containers and … continue reading
Cloud security and compliance company Threat Stack wants to bolster its cloud capabilities with the acquisition of Bluefyre. According to the company, Bluefyre will help deliver greater visibility into security as well as help developers build secure, cloud-native apps. Bluefyre provides targeted application security for Kubernetes, Mesosphere and OpenShift applications, and according to Threat Stack … continue reading
Data center networking automation company Kaloom released its Software Defined Fabric (SDF) solution into general availability. SDF is a containerized software suite designed to provide networking capabilities for white box, or custom-built, routing and switching hardware at hyperscale. “Since founding Kaloom, our goal has been to deliver the most automated, programmable and scalable data center … continue reading
Open-source container security, monitoring and forensics provider Sysdig is dedicating its newly announced $68.5 million of funding to providing improved operations and security technologies for companies running containerized infrastructure and cloud-native apps. Backed, by Insight Venture Partners, the new round of series D funding brings Sysdig’s total funding to $121.5 million. “Enterprises are adopting cloud-native … continue reading
Container and microservices company Kontena announced the version 1.3.0 release of its Kubernetes distribution Kontena Pharos. The latest release introduces CoreDNS, an updated CRI-O container runtime and support for Kubernetes 1.11. The previously named pharos-cluster utility has been changed to the pharos CLI tool, and with the change comes better stability and performance during the … continue reading