Security News

While enterprises rapidly transition to the public cloud, complexity is increasing, but visibility and team sizes are decreasing while security budgets remain flat to pose a significant obstacle to preventing data breaches, according to FireMon's 2020 State of Hybrid Cloud Security Report. "It is shocking to see the lack of automation being used across the cloud security landscape, especially in light of the escalating risk around misconfigurations as enterprises cut security resources. The new State of Hybrid Cloud Security Report shows that enterprises are most concerned about these challenges, and we know that adaptive and automated security tools would be a welcomed solution for their needs."

WAF is not a new technology and has been around for a while now, where many organizations have some form of WAF deployed. Static WAF rules in traditional WAF do not provide visibility to application vulnerabilities, nor do they provide complete protection when it comes to the everchanging threat landscape.

SentinelOne, the autonomous cybersecurity platform company, announced the general availability of its next generation container and cloud-native workload protection offering. Purpose built for containers, SentinelOne's CWPP offering provides the richest set of capabilities on the market, including advanced runtime protection, full remote shell to any pod, container kill, and full remediation to empower security and DevOps teams - all seamlessly within SentinelOne's Singularity platform.

Gurucul, a leader in unified security and risk analytics technology for on-premises and the cloud, announced Gurucul Unified Security and Risk Analytics, the first cloud-native data science driven platform that unifies key Cyber Defense Center functions to enable contextual, risk-prioritized decisions for automating security controls. It applies security analytics to use cases handled by SIEM, UEBA, network traffic analysis, SOAR, cloud security and threat hunting in one consolidated platform to detect both known and unknown threats in real-time, identify risky user/entity behaviors, and automatically respond to security incidents.

Secureworks' new Cloud Configuration Review pairs its two decades of security operations and consulting experience with the innovative VMware Secure State, a public cloud security and compliance monitoring platform, to give customers an immediate head start against cloud security risks such as misconfiguration. Security recommendations: a consultative review of VMware Secure State findings to deliver a visual understanding of security risks, recommendations for remediation actions and guidance on how to prioritize security controls that have the most impact on cloud security posture.

At RSA 2020, Steve Grobman, senior vice president and chief technology officer at McAfee, explained how easy it is to take advantage of cloud misconfigurations, an expensive security problem for corporations. His timely scenario was a group of researchers sequencing the genome of a virus to illustrate how sharing data through the cloud can lead to a security vulnerability.

Barracuda Networks has released the findings of its latest survey on public cloud security. Fleming Shi, chief technology officer of the company, describes what is holding organizations back from fully embracing the public cloud.

Code42, the leader in insider threat detection, investigation and response, announced it has advanced its cloud data security solution with the second in a series of new capabilities designed to help companies defend against the rising tide of insider threats. The newest enhancements equip security teams to closely monitor, detect and investigate data threats caused by high-risk employees.

As enterprises increasingly transition and scale their operations in the public cloud, at RSA Conference 2020 FireMon announced new integrations with Microsoft Azure and Amazon Web Services to help improve cloud visibility, reduce complexity and match the pace needed to protect systems from ongoing cyber threats and data breaches. "With our latest Microsoft Azure and AWS cloud integrations, customers can now deploy consistent, seamless, and adaptive security policy orchestration across any type of infrastructure."

The security dynamics too often overlooked in the drive to become a cloud-first organization;. How organizations must reassess how they protect server environments;.