%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Kubernetes admission controllers in 5 minutes

Feb 18, 2021 By Kaizhe Huang In Sysdig

Admission controllers are a powerful Kubernetes-native feature that helps you define and customize what is allowed to run on your cluster. As watchdogs, they can control what’s going into your cluster. They can manage deployments requesting too many resources, enforce pod security policies, and even block vulnerable images from being deployed. In this article, you’ll learn what admission controllers are in Kubernetes and how their webhooks can be used to implement image scanning.

Read Post

Sysdig

Read more about Kubernetes admission controllers in 5 minutes

RapidSpike Turns 6

Feb 18, 2021 By James Tyler In RapidSpike

Picture the scene. It’s 9am on a cold, wet, January Sunday morning in 2015 and I’m trudging up Merrion Street in Leeds. Recently made redundant, I’m on my way to a coffee shop that I’m desperately hoping is open. Am I a coffee aficionado desperate for a fix? Am I getting pumped for a gym session? Do I just enjoy walks in the rain? No. I’m on my way to a job interview.

Read Post

RapidSpike

Read more about RapidSpike Turns 6

Shielding your Kubernetes runtime with image scanning and the Sysdig Admission Controller

Feb 18, 2021 By Sysdig In Sysdig

Implementing image scanning on a Kubernetes admission controller is an interesting strategy to apply policies that need Kubernetes context, and create a last line of defense for your cluster. You are probably following the image scanning best practices already, detecting vulnerabilities and misconfigurations before they can be exploited. However, not everything you deploy goes through your CI/CD pipeline or known registries. There are also third-party images and, sometimes, manual deploys.

View Video

Sysdig

Read more about Shielding your Kubernetes runtime with image scanning and the Sysdig Admission Controller

RapidSpike Magecart Attack Detection

Feb 18, 2021 By RapidSpike In RapidSpike

In this video we explore RapidSpike Magecart Attack Detection.

View Video

RapidSpike

Read more about RapidSpike Magecart Attack Detection

Cyberattack on Florida's water treatment plant: What it means to global organizations

Feb 17, 2021 By General In ManageEngine

The recent news of a cyberattack on a water treatment plant carried out by a remote perpetrator came as a shock to organizations around the world. Earlier this month, an unauthorized threat actor had remotely accessed the plant’s control systems via TeamViewer and used it to increase the amount of sodium hydroxide (lye) in water to dangerously higher levels.

Read Post

ManageEngine

Read more about Cyberattack on Florida's water treatment plant: What it means to global organizations

Threat Hunting With ML: Another Reason to SMLE

Feb 17, 2021 By John Reed In Splunk

Security is an essential part of any modern IT foundation, whether in smaller shops or at enterprise-scale. It used to be sufficient to implement rules-based software to defend against malicious actors, but those malicious actors are not standing still. Just as every aspect of IT has become more sophisticated, attackers have continued to innovate as well. Building more and more rules-based software to detect security events means you are always one step behind in an unsustainable fight.

Read Post

Splunk

Read more about Threat Hunting With ML: Another Reason to SMLE

How the COVID-19 pandemic has changed IT & Security

Feb 17, 2021 By Sumo Logic In Sumo Logic

While the COVID-19 pandemic has disrupted business models around the world, the adoption of modern application and cloud technologies continues to grow. This year’s Continuous Intelligence Report by Sumo Logic provides an inside look into the state of the modern application technology stack, including changing trends in cloud and application adoption and usage by customers, and the impact of COVID-19 as an accelerant for digital transformation efforts.

Read Post

Sumo Logic

Read more about How the COVID-19 pandemic has changed IT & Security

How The Dark Web Continues to Threaten Businesses

Feb 16, 2021 By OpsMatters In OpsMatters

The Internet is a massive space. Seven days a week, millions of web sites, files, and servers run 24 hours a day. Even so, it is just the tip of the iceberg that we surf and the visible websites that can be accessed using search engines such as Google and Yahoo. The Deep Web, which makes up approximately 90 percent of all websites, is underneath the ground. This hidden network is so massive that it is difficult to figure out at any given time how many pages or sites are currently involved.

Read Post

OpsMatters

Read more about How The Dark Web Continues to Threaten Businesses

How to Monitor Servers for DISA STIG Policy Compliance

Feb 16, 2021 By SolarWinds In SolarWinds

Learn how to automate compliance policy monitoring for device, server, and application configurations against a benchmark with SolarWinds Server Configuration Monitor. Each rule reads a configuration from a file, device, command, registry setting, etc.; pulls the needed information; evaluates it against the benchmark; and returns pass, fail, or unknown.

View Video

SolarWinds

Read more about How to Monitor Servers for DISA STIG Policy Compliance

Industry-First Pay-as-you-go SaaS Platform for Kubernetes Security and Observability

Feb 16, 2021 By Amit Gupta In Tigera

We are excited to introduce Calico Cloud, a pay-as-you-go SaaS platform for Kubernetes security and observability. With Calico Cloud, users only pay for services consumed and are billed monthly, getting immediate value without upfront investment.

Read Post