Topic: security
Sysdig: Attackers are moving quickly and steathily in the cloud
A targeted attack can begin within five minutes of credential discovery, and by the time another five minutes have passed, the attackers have completed their goal. This is according to Sysdig’s 2023 Global Cloud Threat report, which looked into cloud-based attacks. “Using their worldwide honeynets, the Sysdig [Threat Research Team] shed light on an alarming … continue reading
AuditBoard unveils ITRM solution to improve cyber resilience
AuditBoard unveiled its ITRM solution dedicated to IT Risk Management. This offering empowers IT security and risk management experts to efficiently handle their threat landscape, assess IT-related risks, and enhance cyber resilience. By adopting this solution, organizations can effectively adapt to the ever-changing and expanding landscape of business risks. The announcement coincides with the upcoming … continue reading
Teleport Assist launches as generative AI chat interface for infrastructure management
Teleport has introduced a new offering called Teleport Assist, an AI-powered chat interface specifically designed to aid DevOps teams in swiftly and effortlessly resolving infrastructure issues by engaging in conversations with their cloud environments. With Teleport Assist, DevOps professionals can troubleshoot problems more efficiently, leveraging the power of artificial intelligence to streamline their workflows and … continue reading
ITOps Times Open-Source Project of the Week: Kyverno
Kyverno is a policy engine designed specifically for Kubernetes and the name means “govern” in Greek. The management of policies in Kyverno is done through Kubernetes resources, eliminating the need for learning a new language to write policies. This approach enables the utilization of well-known tools like kubectl, git, and kustomize to handle policy management … continue reading
Google Cloud expands security offerings with new AI capabilities
The new capabilities were announced at the Google Cloud Security Summit, along with new partnerships across the industry. It announced Chronicle TDIR for Google Cloud, which enables customers to ingest telemetry data into Chronicle, which is a security operations platform provided by Google. Chronicle can then correlate telemetry data with threat intelligence to detect and … continue reading
Sysdig adds detection and response to CNAPP
Sysdig introduced agentless cloud detection based on open-source Falco, extending cloud detection and response (CDR) beyond workload agents to cloud, GitHub, and Okta logs in its Cloud-Native Application Protection Platforms (CNAPP). As organizations expand their cloud environments, they encounter sprawl consisting of hundreds of unregulated applications, services, and identities, which potentially present vulnerabilities. CNAPP can … continue reading
Amazon Security Lake enables better understanding of organizations’ security posture
Amazon recently announced the general availability of Security Lake, which automatically centralizes an organization’s security data from across their AWS environments, leading SaaS providers, on-premises environments, and cloud sources into a data lake. The tool adapts and standardizes incoming security data to align with the Open Cybersecurity Schema Framework (OCSF), which is a universally accepted … continue reading
Bitdefender GravityZone Security for Mobile offers improved mobile threat detection to enterprises
Cybersecurity company Bitdefender today announced GravityZone Security for Mobile. This release is intended to offer companies enhanced mobile threat detection (MTD) and security for Android, iOS, and Chromebook devices. It delivers deeper visibility into the mobile footprint of enterprises, managed service providers, and their users so they can better prevent, locate, and respond to cyberattacks … continue reading
CrowdStrike announces Charlotte AI for faster threat reaction
CrowdStrike announced a new generative AI cybersecurity analyst called Charlotte AI. The AI will help to reduce the cybersecurity skills gap and enable faster reactions to threats posed by adversaries. It is currently available only in private customer preview. Charlotte AI uses advanced security data and a structured feedback system to give customers answers to … continue reading
Teleport 13 offers automatic vulnerability patching
Teleport, provider of identity-native infrastructure access management, today announced the release of its latest version of the Teleport Access Platform, Teleport 13. This release is geared at improving security and reducing operational overhead for DevOps teams that are responsible for securing cloud infrastructure. Teleport 13 also provides a new Teleport Team plan for companies who … continue reading
New Amazon Detective features simplify AWS Security Findings analysis
New features in Amazon Detective enable customers to quickly and efficiently investigate AWS security issues. Detective collects and analyzes events from AWS CloudTrail logs, Amazon Virtual Private Cloud (Amazon VPC) Flow Logs, Amazon GuardDuty findings, and Amazon Elastic Kubernetes Service (EKS) audit logs that describe IP traffic, AWS management operations, and malicious or unauthorized activity. … continue reading
Barracuda SecureEdge works to make remote work easier to secure
Barracuda, the cloud-first security company, today unveiled its new SASE solution intended to simplify the process of making hybrid and remote work secure, Barracuda SecureEdge. This solution also integrates Barracuda’s Secure SD-WAN, Firewall-as-a-Service, Zero Trust Network Access, and Secure Web Gateway capabilities. According to the company, Barracuda SecureEdge secures users, sites and IoT devices; is … continue reading
