Security News

With these additions, StackPulse gives organizations running Kubernetes a powerful set of capabilities to augment their existing incident response practices, helping Site Reliability Engineers understand and investigate issues faster, and deploy well-tested outage mitigation strategies, helping prevent customer-facing downtime. Since Kubernetes is the de-facto standard for running containerized applications, StackPulse wanted to create a set of code-based tools engineers could use to operationalize incident response for production Kubernetes-based applications.

The TL;DR version of the Infoworld article went something like this: "Companies are shying away from managing their own Kubernetes clusters and more and more, turning to managed Kubernetes solutions" - and I was not surprised. Even though Kubernetes adoption seems to be at an all-time high, security awareness for teams working on Kubernetes projects at their workplaces and running mission-critical workloads on Kubernetes is surprisingly low.

Scality introduced ARTESCA, the lightweight, true enterprise-grade, cloud-native object storage solution designed for the needs of the Kubernetes era. Supported immediately on a broad portfolio of HPE all-flash and hybrid intelligent data storage servers, ARTESCA addresses multiple use cases, from the edge to the core to the cloud, especially in cloud-native, AI/ML, big data analytics and in-memory applications.

Loft Labs announced that vcluster, a virtual cluster technology for Kubernetes, is now freely available on GitHub. "Vcluster is the first actually working virtualization technology for Kubernetes," said Fabian Kramm, CTO of Loft Labs.

A vulnerability in one of the Go libraries that Kubernetes is based on could lead to denial of service for the CRI-O and Podman container engines. "Through this vulnerability, malicious actors could jeopardize any containerized infrastructure that relies on these vulnerable container engines, including Kubernetes and OpenShift," Sasson said in a Wednesday posting.

Platform9 announced its latest version of the Platform9 Managed Kubernetes product. The SaaS Managed Kubernetes with IPv6 support for 5G deployments boasts several advanced networking technologies and support capabilities to optimize 5G service delivery, offers the ability to centrally connect and manage AWS EKS clusters, and unifies management of virtual machines and containers.

CTO.ai announced the launch of its serverless Kubernetes platform that makes it easy for developers to deploy and manage their cloud native applications. This powerful, yet easy-to-use, platform makes product delivery teams more efficient and eliminates the complexity experienced by developers when applications are deployed on top of a self-managed Kubernetes cluster.

NetApp announced the general availability of NetApp Astra, a fully managed application-aware data management service built for Kubernetes workloads. NetApp Astra allows organizations to protect, recover, and move applications deployed on Kubernetes with no software to download, install, manage, or upgrade, thus enabling them to focus on developing and scaling their applications-not on managing infrastructure.

Calico Cloud gives DevOps, DevSecOps, and Site Reliability Engineering teams a single pane of glass across multi-cluster and multi-cloud Kubernetes environments to deploy a standard set of egress access controls, enforce security policies for compliance, and observe and troubleshoot applications. Calico Cloud is Kubernetes-native and provides native extensions to enable security and observability as code for easy and consistent enforcement across Kubernetes distributions, multi-cloud and hybrid environments.

The hacking group referred to as TeamTNT has been employing a new piece of malware in a recently started campaign targeting Kubernetes environments, security researchers with Palo Alto Networks' Unit 42 reveal. During the summer of 2020, TeamTNT was targeting Docker and Kubernetes systems with a crypto-mining worm capable of stealing local credentials, including Amazon Web Services login details.