Security Experts:

long dotted


Lucidum, an asset discovery startup that aims to eliminate blind spots in IT, cloud and security operations, launched on Friday with $4 million in seed funding. [Read More]
Container and Kubernetes security company StackRox has released KubeLinter, an open source tool designed to help users identify misconfigurations in Kubernetes deployments. [Read More]
Microsoft this week announced the availability of a new password spray detection for Azure AD Identity Protection customers. [Read More]
Palo Alto Networks has threatened legal action against Orca Security after the latter made a comparison between products from the two companies. [Read More]
A scan of 2,200 virtual appliance images revealed the existence of over 400,000 vulnerabilities, including in the appliances of major vendors. [Read More]
Cloudflare announces Cloudflare One, a new cloud-based network-as-a-service solution designed to help organizations ensure that their systems remain secure while their employees work remotely. [Read More]
Cloud security company Accurics raised $20 million across seed and Series A funding rounds in the past six months. [Read More]
Cisco this week announced plans to acquire Kubernetes-native security platform Portshift. [Read More]
Microsoft this week announced the public preview of support for confidential computing nodes in Azure Kubernetes Service (AKS). [Read More]
VMware announces Carbon Black Cloud Workload, a new security solution designed to help organizations protect workloads running in private, virtualized and hybrid cloud environments. [Read More]

FEATURES, INSIGHTS // Cloud Security

rss icon

Gunter Ollmann's picture
It is reasonable to assume that within five years the term “confidential compute” will become superfluous and an assumed native component of all cloud services.
Justin Fier's picture
Businesses should be emphasizing visibility, early threat detection, and focusing on understanding ‘normal’ activity rather than ‘bad.’
Torsten George's picture
The tactics, techniques, and procedures (TTPs) used in the Twitter attack were not much different than in the majority of other data breaches and serve as valuable lessons for designing a modern cyber defense strategy.
Gunter Ollmann's picture
With a diverse and globally distributed workforce, cybersecurity buying decisions will increasingly factor accessibility, usability, and inclusiveness in solution design and operability.
Gunter Ollmann's picture
CISOs are increasingly cognizant of the value deep integration of threat intelligence can bring to cloud protection platforms and bottom-line operational budgets.
Torsten George's picture
Securing multi-cloud and hybrid environments creates an unfamiliar situation for many organizations, in which they’re unsure of who is responsible for controlling access to and securing the underlying infrastructure.
John Maddison's picture
A single, cross-platform security strategy ensures that your cloud security deployment doesn’t replicate the challenges of complexity, siloed solutions, and solution sprawl faced in traditional network security environments.
Gunter Ollmann's picture
The faster in-house network administrators can transition to becoming public cloud network security engineers, architects, or analysts, the faster their organizations can implement digital transformation.
Justin Fier's picture
As executives, developers, security teams, and third-party vendors struggle to exert their influence on digital transformation, threat-actors are exploiting the chaos for their own gain.
Alastair Paterson's picture
If it takes a whole village to raise a child, it takes a whole community of vendors and business partners to build a secure data environment.