Security News
Tufin SecureCloud now secures cloud-native, multi-cloud, and hybrid-cloud workloads and applications
Tufin announced a new release of Tufin SecureCloud, providing security for cloud-native, multi-cloud, and hybrid-cloud workloads and applications. The new release includes Center for Internet Security Benchmarks for Kubernetes and public cloud environments, Kubernetes best practices and assessments, streamlined risk analysis, enhanced security policy discovery and automatic generation.
A newly uncovered strain of Android spyware lurked on the Google Play Store disguised as cryptocurrency wallet Coinbase, among other things, for up to four years, according to a new report by Bitdefender. Beginning with an innocuous-looking dropper hosted on the Google Play store, masquerading as one of a number of legitimate apps, Mandrake allowed its Russian operators to snoop on virtually everything unsuspecting targets did on their mobile phone.
FireEye, the intelligence-led security company, announced the availability of FireEye Cloudvisory, a control center for cloud security management across any security environment - private, public and hybrid. Fully integrated into the broader FireEye cloud security portfolio, Cloudvisory now offers customers instant deployment across their cloud infrastructures, and further capabilities in security analytics through FireEye Helix and advanced threat detection through FireEye Detection On Demand.
The Forum of Incident Response and Security Teams has released an updated set of coordination principles - Guidelines for Multi-Party Vulnerability Coordination and Disclosure version 1.1. Previous best practices, policy and process for vulnerability disclosure focused on bi-lateral coordination and did not adequately address the current complexities of multi-party vulnerability coordination.
Orca Security, founded last year by a group of former Check Point executives and architects, announced a $20 million Series A funding round led by GGV Capital with participation from YL Ventures and SVCI. The funding will fuel additional company growth to help more worldwide customers gain deeper visibility into AWS, Azure, and GCP at a fraction of the time and operational cost of alternative solutions. Since its inception, Orca Security has been on an explosive path to solve a fundamental challenge-to provide frictionless cloud security with the breadth and depth to quickly analyze all cloud assets for risks.
With a third of the population currently working remotely and great uncertainty regarding when this situation is going to change, organizations must shift their business operations to support long-term remote working. According to a recent Gartner survey, the biggest barrier to effective remote work is poor technology and/or infrastructure for remote work.
Surveying over 250 worldwide business executives and IT professionals from a diverse group of technical backgrounds, Denodo's cloud usage survey revealed that hybrid cloud configurations are the centre of all cloud deployments at 42 percent, followed by public and private clouds. The advantages of hybrid cloud and multi-cloud configurations according to respondents include the ability to diversify spend and skills, build resiliency, and cherry-pick features and capabilities depending on each cloud service provider's particular strengths, all while avoiding the dreaded vendor lock-in.
Vizru is announcing the launch of Vizru ZEOS, industry's first OS for delivering and governing AI applications at-scale. With the launch of ZEOS, Vizru has successfully decoupled composition of apps from governance.
To address these challenges, cloud providers have introduced support for Bring Your Own Key that allows organizations to encrypt data inside cloud services with their own keys while still continuing to leverage the cloud provider's native encryption services to protect their data. Even with BYOK, keys still exist in the cloud providers' key management service.
Alkira CSX enables cloud architects and network engineers to build and deploy a point and click multi-cloud network in minutes, with the flexibility to turn services on and off as the business requires, with no upfront CapEx. "Alkira is like having your own personalized virtual co-location capability for cloud network access. It comes with a rich suite of secure and resilient unified services that enable on-time and at scale cloud connectivity."