Operations | Monitoring | ITSM | DevOps | Cloud

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Building secure and observable Kubernetes platforms for scaled software delivery

Jun 11, 2021 By Tigera In Tigera
"Companies of various sizes are building their applications on Kubernetes because it provides significant operational benefits like autoscaling, self-healing, extensibility, and declarative deployment style. However, the operational benefits are only a starting point down the path of building a secure and observable platform that enables the continuous delivery of application workloads. This session shows how to build a fully operational platform, leveraging platform-oriented building blocks to address network security and observability.
View Video
sysdig

How to rightsize the Kubernetes resource limits

Jun 10, 2021 By David de Torres Huerta In Sysdig

Kubernetes resource limits are always a tricky setting to tweak, since you have to find the sweet spot between having the limits too tight or too loose. In this article, which is a continuation of the Kubernetes capacity planning series, you’ll learn how to set the right Kubernetes resource limits: from detecting the containers without any limit, to finding the right Kubernetes resource limits you should set in your cluster.

Read Post
tigera

Enabling You to Get the Best from AWS: Introducing the New Calico AWS Expert Certification

Jun 10, 2021 By Chris Tomkins In Tigera

Calico is the industry standard for Kubernetes networking and security. It offers a proven platform for your workloads across a huge range of environments, including cloud, hybrid, and on-premises. Given this incredibly wide support, why did we decide to create a course specifically about AWS?

Read Post
ivanti

Wall Street Journal Predicts Dire Cybersecurity Days Ahead, Endorses Zero Trust

Jun 10, 2021 By Matt Kane In Ivanti

Let’s be honest for a second. This is a corporate blog. Yes, we aim to provide our readers with actionable, educational information. And, yes, we strive for complete transparency. But, at the end of the day, we understand if you’re skeptical of some of what’s written here. We’re a business, not a news publication, and it’s impossible for us to be completely unbiased all the time.

Read Post
splunk

Detecting Password Spraying Attacks: Threat Research Release May 2021

Jun 10, 2021 By Splunk Threat Research Team In Splunk

The Splunk Threat Research team recently developed a new analytic story to help security operations center (SOC) analysts detect adversaries executing password spraying attacks against Active Directory environments. In this blog, we’ll walk you through this analytic story, demonstrate how we can simulate these attacks using PurpleSharp, collect and analyze the Windows event logs, and highlight a few detections from the May 2021 releases.

Read Post
opsmatters

Digital Data Loggers vs. Chart Recorders. When To Upgrade

Jun 9, 2021 By OpsMatters In OpsMatters
A digital data logger is an electronic device that measures and records various environmental conditions. These conditions can be temperature, humidity, pressure, voltage, or current. Measuring them is essential in many industries where compliance regulations exist. A chart recorder is essentially an old-school version of the digital data logger. Instead of using a microprocessor for storage, a chart recorder marks the measurements on a paper chart that shows variations in the values recorded at a glance. In this article, we will take a closer look at each and compare the two.
Read Post
solarwinds

Can They Really See That Data? Auditing Access Controls Across Environments

Jun 9, 2021 By Meagan Longoria In SolarWinds
"Who has access to sensitive financial data in our organization?" Assuming you have a definition of what "sensitive financial data" means for your organization, can you easily answer this question? If you needed to perform an audit to verify only the appropriate people have access, what actions would you take?
Read Post
elastic

How South Dakota Bureau of Information and Telecommunications deploys Elastic to secure endpoints

Jun 9, 2021 By David Kravets In Elastic

The South Dakota Bureau of Information and Telecommunications (BIT) provides quality customer services and partnerships to ensure South Dakota’s IT organization is responsive, reliable, and well-aligned to support the state government’s business needs. The BIT believes that “People should be online, not waiting in line.” The bureau’s goals for the state's 885,000 residents include.

Read Post
cloudsmith

SolarWinds and the Secure Software Supply Chain

Jun 9, 2021 By Dan McKinney In Cloudsmith

In early 2020, threat actors breached the build systems of Solarwinds and used this access to add malicious code into one of SolarWinds products. The product, called “Orion”, is very widely used and deployed by tens of thousands of companies, including many Fortune 500 companies.

Read Post
sysdig

Automated Falco rule tuning

Jun 9, 2021 By Eric Lugo In Sysdig

We recently released the automated Falco rule tuning feature in Sysdig Secure. Out-of-the-box security rules are a double-edged sword. On one side, they allow you to get started right away. On the other, it can take many working hours to learn the technology, configuration, and syntax to be able to customize the rules to fit your applications. Falco’s default security rules are no different.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.