Security

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Securing AWS Fargate workloads: Meeting File Integrity Monitoring (FIM) requirements

May 4, 2021 By Alba Ferri In Sysdig

Securing AWS Fargate serverless workloads can be tricky as AWS does not provide much detail about the internal workings. After all… it’s not your business, AWS manages the scaling of underlying resources for you. :) While the security and stability of Fargate’s system is an inherent feature, Fargate follows a shared responsibility model, where you still have to take care of securing those parts specific to your application..

Read Post

Sysdig

Read more about Securing AWS Fargate workloads: Meeting File Integrity Monitoring (FIM) requirements

AWS Fargate runtime security - Implementing File Integrity Monitoring with Sysdig

May 4, 2021 By Sysdig In Sysdig

Thanks to serverless you can focus on your apps, instead of your infrastructure. Take AWS Fargate as an example. A service where you can deploy containers as Tasks, without worrying what physical machine they run on. However, without access to the host How can you detect suspicious activity? Like, file changes on your Fargate tasks? Sysdig provides runtime detection and response to secure Fargate serverless containers.

View Video

Sysdig

Read more about AWS Fargate runtime security - Implementing File Integrity Monitoring with Sysdig

Dynamic Service Graph | Tigera - Long

May 4, 2021 By Tigera In Tigera

Downtime is expensive and applications are a challenge to troubleshoot across a dynamic, distributed environment consisting of Kubernetes clusters. While development teams and service owners typically understand the microservices they are deploying, it’s often difficult to get a complete, shared view of dependencies and how all the services are communicating with each other across a cluster. Limited observability makes it extremely difficult to troubleshoot end-to-end connectivity issues which can impact application deployment.

View Video

Tigera

Read more about Dynamic Service Graph | Tigera - Long

Application Layer Observability | Tigera - Long

May 4, 2021 By Tigera In Tigera

The majority of operational problems inherent to deploying microservices in a distributed architecture are linked to two areas: networking and observability. At the application layer (Layer 7), the need to understand all aspects associated with service-to-service communication within the cluster becomes paramount. Service-to-service network traffic at this layer is often using HTTP. DevOps teams struggle with these questions: Where is monitoring needed? How can I understand the impact of issues and effectively troubleshoot? And how can I effectively protect application-layer data?

View Video

Tigera

Read more about Application Layer Observability | Tigera - Long

DNS Dashboard | Tigera - Long

May 4, 2021 By Tigera In Tigera

While it’s an essential part of Kubernetes, DNS is also a common source of outages and issues in Kubernetes clusters. Debugging and troubleshooting DNS issues in Kubernetes environments is not a trivial task given the limited amount of information Kubernetes provides for DNS queries. The DNS Dashboard in Calico Enterprise and Calico CLoud helps Kubernetes teams more quickly confirm or eliminate DNS as the root cause for microservice and application connectivity issues.

View Video

Tigera

Read more about DNS Dashboard | Tigera - Long

Barracuda CloudGen Access + Mattermost deliver Zero Trust security for messaging, devices, and access

May 4, 2021 By Corey Hulen In Mattermost

Barracuda CloudGen Access, the new standard for Zero Trust remote access, and Mattermost, a messaging platform designed for enterprises with high privacy and security needs, have partnered to deliver the most rigorous remote access security for enterprise messaging. In this post we’ll look at how one next-generation investment service firm relies on the CloudGen Access and Mattermost solution to protect customer assets, personal information and corporate intellectual property.

Read Post

Mattermost

Read more about Barracuda CloudGen Access + Mattermost deliver Zero Trust security for messaging, devices, and access

Calico Enterprise enables live view of cloud-native apps deployed in Kubernetes

May 4, 2021 By Laura Ferguson In Tigera

We are happy to announce that the latest release of Calico Enterprise delivers unprecedented levels of Kubernetes observability! Calico Enterprise 3.5 provides full-stack observability across the entire Kubernetes environment, from application layer to networking layer. With this new release, developers, DevOps, SREs, and platform owners get: For more information, see our official press release.

Read Post

Tigera

Read more about Calico Enterprise enables live view of cloud-native apps deployed in Kubernetes

Monitoring security architecture

May 4, 2021 By Sancho Lerena In Pandora FMS

Do an exercise, ask five IT technicians -of any profile- what SNMP means.. If you’re close with them the better, so that the first thing they do is not go to Wikipedia to boast. Hopefully, they might tell you what they said to me when I was working in networks.

Read Post

Pandora FMS

Read more about Monitoring security architecture

Security and automation in Fintech infrastructure

May 4, 2021 By Kris Sharma In Canonical

The future of Fintech infrastructure is hybrid multi-cloud. Using private and public cloud infrastructure at the same time allows financial institutions to optimise their CapEx and OpEx costs.

Read Post

Canonical

Read more about Security and automation in Fintech infrastructure

Clop Ransomware Detection: Threat Research Release, April 2021

May 3, 2021 By Splunk Threat Research Team In Splunk

Clop Ransomware has been active since 2019 and has been mostly associated with financially-driven criminal groups. However, lately this ransomware payload has been observed in campaigns against universities and other institutions in the education vertical.

Read Post