Security News

VMware on Tuesday announced Carbon Black Cloud Workload, a new security solution designed to help organizations protect workloads running in private, virtualized and hybrid cloud environments. The solution can be used by infrastructure and security teams to secure new and existing cloud workloads throughout the security lifecycle.

Incident response and detection is a critical part of your security operation - it's hard to defend against what you can't see, particularly when your attack surface now extends from on-prem and into the cloud. Do you feel like it's the criminals and hackers who have grabbed all the benefits of moving to the cloud, being able to scale up their operations at will, leverage technologies like machine learning and AI, and exploit vulnerabilities left as target organizations hybridize their own operations.

Google recently patched a privilege escalation vulnerability in OS Config, a Google Cloud Platform service for Compute Engine that is designed for managing operating systems running on virtual machine instances. Google says the OS Config service API and agent allow users to perform various tasks across a group of VM instances, including applying patches, collecting and reviewing OS information, and installing, removing and updating software packages.

Oracle announced that Rescale's cloud HPC simulation platform is now available on Oracle Cloud Infrastructure. The Rescale cloud HPC platform, built on a powerful high-performance computing infrastructure, seamlessly matches software applications with the best cloud or on-premises architecture to run complex data processing and simulations.

Six percent of all Google Cloud buckets are misconfigured and left open to the public internet, for anyone to access their contents. In a survey of 2,064 Google Cloud buckets by Comparitech, 131 of them were found to be vulnerable to unauthorized access by users who could list, download and/or upload files.

Oracle announced that it was chosen to become TikTok's secure cloud technology provider. "TikTok picked Oracle's new Generation 2 Cloud infrastructure because it's much faster, more reliable, and more secure than the first generation technology currently offered by all the other major cloud providers," said Oracle Chief Technology Officer Larry Ellison.

Docker Enterprise Container Cloud offers enterprises unprecedented speed to ship code faster on public clouds and on premise infrastructure. "Docker Enterprise Container Cloud and Lens will enable businesses to streamline delivery of hundreds of daily deployments across thousands of apps, overcoming the complexity of Kubernetes development at enterprise scale," said Mirantis customer Don Bauer, Docker Captain and VP Technology Services / DevOps Manager.

The SaaS solution is built to mitigate exposure from data exfiltration and directly addresses the gaps in security solutions for insider threats, the cause of 66% of breaches. "The pandemic and its impact on workforce collaboration is a catalyst for security teams to rethink how they address data protection without compromising collaboration. Incydr prioritizes risks to data and provides fast and easy event investigation and response capabilities, while paving a new path for companies to protect their trade secrets."

RackWare is expanding its offering to allow businesses to easily migrate to and protect containers in the cloud. RackWare's new Kubernetes offering, SWIFT, augments RackWare's industry leading server migration and disaster recovery solutions, enabling the movement of containers from on-premise to the cloud, and from cloud-to-cloud.

Trend Micro announced that its hybrid cloud security offerings have received the AWS Outposts Ready designation, part of the Amazon Web Services Service Ready Program. Teams using Trend Micro for their hybrid cloud security benefit from a truly consistent hybrid experience that combines the agility, breadth of services, and pace of innovation of AWS with seamless security protection across an enterprise infrastructure.