Topic: itsec

Microsoft Security Copilot enters Early Access

Users wanting to try out Microsoft Security Copilot now have the chance to do so through the company’s Early Access Program.  Microsoft Security Copilot was first announced in March 2023 and, according to Microsoft, customers using it in preview have saved up to 40% of time on core security operations tasks like writing complex queries … continue reading

ITOps Times Open-Source Project of the Week: Kubei

Portshift has announced the release of Kubei, an open-source Kubernetes runtime vulnerabilities scanner tool.  According to the company, while there are a lot of options already out there, not all scanners are the same and differ by the number of feeds they consume, updates they product and information they provide.  ‘All tools, however, require some … continue reading

Wind River Extends Embedded Security and Linux Leadership with Acquisition of Star Lab

Wind River, a leader in delivering software for the intelligent edge, today announced its acquisition of Star Lab, a leader in cybersecurity for embedded systems. The acquisition broadens the comprehensive Wind River software portfolio with a system protection and anti-tamper toolset for Linux, a secure open source–based hypervisor, and a secure boot solution. Star Lab is … continue reading

ITOps news digest: Cloudflare’s Flan Scan, OneLogin’s support for AWS Session Tags, and OCF-over-Thread

Cloudflare is open sourcing its in-house lightweight network vulnerability scanner Flan Scan. According to the company, Flan Scan was created after unsuccessful attempts with industry standard scanners. “A little over a year ago, we were paying a big vendor for their scanner until we realized it was one of our highest security costs and many … continue reading

KubeCon: Securing Kubernetes with STRIDE

When you’re architecting your infrastructure around Kubernetes, you need to make sure you’re securing it properly. In a talk at this week’s KubeCon in San Diego, Pushkar Joglekar, security engineer at Visa, explained some of the best practices for securing Kubernetes.  At Visa, the payment workflow boils down to: “Do it fast and with a … continue reading

ITOps news digest: Fairwinds Insights, RedisInsight, and StackRox Kubernetes security platform 3.0

Fairwinds new SaaS platform is launching a free public beta program. Fairwinds Insight is an open-source project for DevOps teams managing multiple Kubernetes clusters. The project is designed to give teams insight into any potential problems. According to the company, it can reduce the time it takes to research, learn and deploy Kubernetes auditing tools; … continue reading

VMware and Carbon Black logos

VMware completes acquisition of cloud-native endpoint protection provider Carbon Black

VMware has officially acquired Carbon Black for $2.1 billion. The company first announced plans to take on the cloud-native endpoint protection provider at the end of August.  “Carbon Black brings us an industry-leading endpoint and workload security platform, with a cloud-native architecture, an AI-powered data lake and a smart, lightweight agent,” said Sanjay Poonen, chief … continue reading

Kubernetes suffers from security flaw

Yesterday, a critical security flaw impacting Kubernetes 1.10 and higher was discovered. The flaw, CVE-2018-1002105, was publicly disclosed by the Kubernetes community and reported through the Kubernetes vulnerability reporting process. According to Red Hat, the flaw could allow malicious actors or unapproved users to escalate privileges on Kubernetes installations, including the company’s own container solution … continue reading

DockerCon: Building and managing containers

Several companies announced new products and functionality at this week’s DockerCon18 conference in San Francisco. Among the announcements were: Red Hat was talking about the initial public release of its Buildah command-line utility for creating or changing Linux container images. Buildah, according to the company, makes the images easier to integrate into build pipelines. Buildah … continue reading

FireMon introduces new global policy controller; delivers frictionless network security management for the hybrid enterprise

FireMon, the leader in network security policy management, today announced FireMon Global Policy Controller (GPC), a new product that enables frictionless security infrastructure management for the hybrid enterprise. FireMon GPC achieves this by bringing together DevOps and other business stakeholders with security managers in a consistent, parallel operating model that improves security and agility while … continue reading

DMCA.com Protection Status

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!