Security News

VMware announced on Wednesday during its virtual Connect 2020 cybersecurity conference the acquisition of Kubernetes security company Octarine and a new Next-Gen Security Operations Center Alliance. VMware acquired Carbon Black last year for $2.1 billion and the virtualization giant announced the launch of its new Security Business Unit when the acquisition was completed.

The road to secure containers is long and winding. One stop you should take on that journey is unloading unnecessary kernel modules in your Linux containers.

Trilio, a leading provider of data protection for cloud-native environments, announced early access availability of its new platform for protecting Kubernetes container applications. TrilioVault for Kubernetes is a cloud-native, application-centric data protection platform that was designed from the ground-up to support the scale, performance and mobility requirements of Kubernetes containers across any private or public cloud environment.

Snyk, the leader in developer-first open source security, and Red Hat, the world's leading provider of open source solutions, announced a new collaboration to strengthen developer-led security for Red Hat customers with new Snyk integrations for Red Hat CodeReady Dependency Analytics and Red Hat OpenShift. Snyk's new OpenShift integration, packaged as a certified Red Hat OpenShiftOperator, helps to simplify the work of platform developers and operators by enhancing the security of Kubernetes and container deployments.

She explains "We bridge security and DevOps. DevOps is trying to learn how to run and configure Kubernetes. Security understands compliance and auditing, but does not understand the infrastructure enough to get that information." Beyond that, they don't even speak the language to ask the questions. There are certainly plenty of container security products; StackRox is one.

Attack matrix for Kubernetes, using the MITRE ATT&CK framework. A good first step towards understand the security of this suddenly popular and very complex container orchestration system....

One very crucial task you can undertake is to prevent unwanted kernel modules from loading on your containers. You'd be surprised at how many modules load at boot-many of them you probably don't need to be using within your containers.

DataStax released code for an Apache Cassandra Kubernetes operator to help enterprises and users succeed with scale-out, cloud-native data. This Kubernetes Operator for Apache Cassandra, cass-operator, is now available and ready for use by the community as we work together on a common operator.

Zettaset, a leading provider of software-defined encryption solutions, announced Zettaset XCrypt Kubernetes Encryption, a software-defined solution that protects data at-rest across any Kubernetes environment. Data protection within Kubernetes environments is a growing challenge for organizations because the location of sensitive data or whether a container has access to unauthorized data is unknown.

Kubernetes-specialist Zettaset has introduced software-defined encryption for Kubernetes-managed containers, improving DevSecOps, enhancing data protection, and enabling compliance. The fluid nature of cloud storage requires a software rather than hardware solution - and Zettaset has announced its software-defined XCrypt Kubernetes Encryption offering.