Security News

Platform9 announced key additional building blocks in delivering the next generation SaaS managed Kubernetes experience. New features include the industry's first managed Calico networking with API access, an application wizard for automated deployment of bare-metal Kubernetes clusters, and enhanced cluster monitoring and observability that provide better insights into all aspects of cluster behavior.

MayaData, the originator of the popular cloud-native projects OpenEBS and Litmus Chaos, announced Kubera, a new solution for the efficient operations management of Kubernetes as a data layer including logging, alerting, visualization, reporting, backups, maintenance, compliance checks, troubleshooting, and lifecycle automation. Dynamic visualizations of an entire Kubernetes environment, with point and click controls for capabilities such as snapshotting and cloning of data and compliance checks and alerts.

The Kubeflow open-source project is a popular framework for running machine-learning tasks in Kubernetes. Because Kubeflow is a containerized service, these various tasks run as containers in the Kubernetes cluster, and each can present a path for an attacker into the core Kubernetes architecture.

Security concerns remain prominent across all network environments, with some unique to the network edge, SDN, and other services. Securing subnets, switches, routers, and firewalls is a fairly traditional field, but security gets a lot tricker with such concepts as the network edge, software-defined networking and other newfangled services.

Identity protection provider Venafi this week announced that it has entered a definitive agreement to acquire Jetstack, a company specializing in open source machine identity protection software for Kubernetes. Jetstack, a Kubernetes professional services company and a contributor to the open-source community, was founded in 2015 in London.

VMware announced on Wednesday during its virtual Connect 2020 cybersecurity conference the acquisition of Kubernetes security company Octarine and a new Next-Gen Security Operations Center Alliance. VMware acquired Carbon Black last year for $2.1 billion and the virtualization giant announced the launch of its new Security Business Unit when the acquisition was completed.

The road to secure containers is long and winding. One stop you should take on that journey is unloading unnecessary kernel modules in your Linux containers.

Trilio, a leading provider of data protection for cloud-native environments, announced early access availability of its new platform for protecting Kubernetes container applications. TrilioVault for Kubernetes is a cloud-native, application-centric data protection platform that was designed from the ground-up to support the scale, performance and mobility requirements of Kubernetes containers across any private or public cloud environment.

Snyk, the leader in developer-first open source security, and Red Hat, the world's leading provider of open source solutions, announced a new collaboration to strengthen developer-led security for Red Hat customers with new Snyk integrations for Red Hat CodeReady Dependency Analytics and Red Hat OpenShift. Snyk's new OpenShift integration, packaged as a certified Red Hat OpenShiftOperator, helps to simplify the work of platform developers and operators by enhancing the security of Kubernetes and container deployments.

She explains "We bridge security and DevOps. DevOps is trying to learn how to run and configure Kubernetes. Security understands compliance and auditing, but does not understand the infrastructure enough to get that information." Beyond that, they don't even speak the language to ask the questions. There are certainly plenty of container security products; StackRox is one.