Security News

There, an Amazon Web Services cloud vulnerability, compounded by Capital One's own struggle to properly configure a complex cloud service, led to the disclosure of tens of millions of customer records, including credit card applications, Social Security numbers, and bank account information. As long as a cloud provider isn't losing customers by the droves - which generally doesn't happen after a security incident - it is incentivized to underinvest in security.

AtScale announced the launch of AtScale CloudStart for building powerful analytics infrastructure on cloud data platforms. CloudStart provides customers a way to start with a smaller semantic layer investment aligned with entry points for cloud data platforms with the ability to scale seamlessly with your analytics infrastructure.

Stacklet announced Stacklet Platform, which allows cloud engineering and security teams to easily understand, codify, and automate cloud governance for a frictionless experience for development teams and rapid cloud adoption. Many organizations identify governance as a key inhibitor to their cloud adoption journey, and a lack of visibility into cloud infrastructure introduces cloud security risks which presents a key challenge for customers as they move into the public cloud.

Blue Hexagon offers agentless cloud-native AI security at runtime for Google Cloud. "With the rise of cloud-based Infrastructure as a Service and Platform as a Service driving rapid enterprise workload migration to the cloud, new challenges with security of cloud compute and network are ever emerging," said Nayeem Islam, CEO and Co-founder, Blue Hexagon.

Versa Networks announced its integration with Google Cloud Network Connectivity Center, allowing for secure and reliable connectivity to cloud workloads and on-premises resources in an automated, dynamic approach that reduces total costs of ownership. The integration between Versa SASE and Google Cloud represents continued development in security, SD-WAN, bandwidth management, and high availability differentiation and innovation to deliver the most consistent and high-performing user experience for secure access to applications anywhere in the world.

Uptycs provides the first cloud-native security analytics platform that enables endpoint and cloud security from a single platform. The solution provides a unique telemetry powered approach to address multiple use cases-including Extended Detection & Response, Cloud Workload Protection, and Cloud Security Posture Management.

NetWitness introduced NetWitness Cloud SIEM, a cloud-based threat detection and response solution that delivers pervasive visibility, multi-faceted analytics, and automated response capabilities without the need for on-premise deployment and administration. NetWitness Cloud SIEM provides enterprises with the same rich log management, retention, reporting, and analytics services long utilized by on-premise customers for threat detection and response, but in cloud form.

Red Hat announced Red Hat JBoss Enterprise Application Platform on Microsoft Azure, enabling organizations to tap into the benefits of a cloud-based architecture for modernizing their existing Jakarta EE applications and building new ones on Azure. Customers can bring existing applications to Azure-including JBoss EAP applications running on-premises or other Jakarta EE applications running on different application servers-choosing how they want to manage business critical, Java-based applications in the cloud.

Backblaze announces the release for its B2 Cloud Storage platform. Backblaze has delivered astonishingly easy cloud storage through B2 Cloud Storage since launching the platform-it takes only minutes to onboard, supports countless development and IT use cases with a partner ecosystem in the 1000s, and is a fraction the cost of others with no hidden fees or pricing tiers.

Cloud Infrastructure Entitlement Management is a new product category that uses advanced analytics to monitor and remediate the risk from unnecessary, unused and excessive permissions associated with human and machine accounts across multiclouds. "Cloud infrastructure entitlement management is an emerging field within identity security that is becoming an urgent concern as companies move more and more sensitive workloads to AWS, Azure, Google and other platforms," said Julie Smith, Executive Director of the IDSA. "We are pleased to have Ermetic join the IDSA and step up to lead discussions to raise awareness for the need to incorporate entitlement management as part of identity security in the cloud."