Security News

Amazon Web Services announced the general availability of Amazon Elastic Container Service Anywhere, a new capability for Amazon ECS that enables customers to run and manage container-based applications on-premises using the same APIs, cluster management, workload scheduling, monitoring, and deployment pipelines they use with Amazon ECS in AWS. Amazon ECS Anywhere provides a fully managed container orchestration service that allows customers to easily run, scale, and secure Docker container applications on any customer-managed infrastructure in addition to all AWS Regions, AWS Local Zones, and AWS hybrid infrastructure deployments. Amazon ECS Anywhere gives customers the ability to run Amazon ECS on any infrastructure using the same cloud-based, fully managed, highly scalable container orchestration service and control plane they use in AWS today.

AtScale announced the launch of AtScale CloudStart for building powerful analytics infrastructure on cloud data platforms. CloudStart provides customers a way to start with a smaller semantic layer investment aligned with entry points for cloud data platforms with the ability to scale seamlessly with your analytics infrastructure.

The new AWS Middle East Region will consist of three Availability Zones and become AWS's second region in the Middle East with the existing AWS Region in Bahrain, giving customers more choice and flexibility to leverage advanced technologies from the world's leading cloud. AWS customers welcomed the news of the AWS Region in UAE, including global customers who will be able to leverage the region to serve new audiences, such as Salesforce, the global customer relationship management leader.

Inseego announced a collaboration with Net4 to drive and simplify the deployment of 5G private networks for enterprise customers across the United Kingdom and Europe. Powered by leading operators including Verizon Business, Net4 is utilizing 5G Stand Alone technology to build private networks that deliver the maximum benefits of 5G. Enterprises can optimize coverage, define specific frequency bands based on their needs and set up network slicing to suit their applications.

The U.S. House Committee on Homeland Security has passed five bipartisan bills on Monday to bolster defense capabilities against cyber attacks targeting U.S. organizations and critical infrastructure. The five bipartisan bills are also designed to make it easier to defend networks from cyber attacks using critical security vulnerabilities such as those abused in campaigns targeting vulnerable Microsoft Exchange Server and Pulse Connect Secure devices earlier this year.

Thus availablity, except out of very very small excursions from "Normal" does not exist in the corporate world. The result as the US finds out more and more regularly, is critical infrastructure outages so often they are now considered "Normal".

There's going to have to be a lot more new procedures developed, a lot better procedures developed to bridge the gap between operational technology and information technology to get those control systems where they need to be. There's going to be a really good focus on what it means to be at that national, and even the regional levels within the control systems there, to start having more robust sharing of that information that's going on within these networks.

IronNet Cybersecurity and Dragos announced that they are launching a new joint initiative designed to help ensure the security of the nation's critical infrastructure through an integrated IT-OT approach to cybersecurity. The IronNet and Dragos joint initiative spans both companies' respective technical and business domains and is focused on integrating the IronNet IronDome and the Dragos Neighborhood Keeper threat intelligence sharing and community-wide visibility solutions in order to increase the overall security posture of organizations - and enable them to focus on core business and digital transformation efforts.

Each one of these supply chain attacks targeted a different piece of implicitly trusted infrastructure-infrastructure that you may or not be paying attention to as a potential target in your organization. Package squatting via software package repositories.

As modern infrastructures get more complex everyday, DevOps teams have a hard time tracking infrastructure drift. The multiplicity of parameters turns infrastructure drift into a multidimensional issue as this situation implies tracking changes across a combination of setups over time.