Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

AWS launches VPC Traffic Mirroring, a new feature that allows users to capture and inspect network traffic from their Amazon EC2 instances. [Read More]
AWS announces general availability of Security Hub, a service that aggregates and prioritizes alerts from AWS and 30 third-party security tools. [Read More]
Real-time application behavior analytics, control, and protection provider TrueFort has raised $13.7 million in a Series A funding round. [Read More]
Cloud data protection and management provider Druva announced $130 million in new funding, which brings the total raised by the company to date to $328 million. [Read More]
Valtix emerges from stealth mode with a cloud-native network security platform and $14 million in initial funding. [Read More]
Cloudflare releases a new free API designed to help CAs securely issue certificates by ensuring that malicious actors cannot complete the domain control validation process via BGP hijacking and DNS spoofing attacks. [Read More]
Israel-based cloud visibility solutions provider Orca Security emerges from stealth mode with $6.5 million in seed funding. [Read More]
Unpatched vulnerabilities found in the rkt container runtime can be exploited by an attacker to escape the container and gain root access to the host. [Read More]
Palo Alto Network has agreed to acquire cloud security startups Twistlock and PureSec that it says will help extend its cloud security capabilities. [Read More]
A newly disclosed vulnerability in Docker could be exploited by a malicious attacker to escape the container and gain arbitrary read/write file access on the host with root privileges. [Read More]

FEATURES, INSIGHTS // Cloud Security

rss icon

Alastair Paterson's picture
If it takes a whole village to raise a child, it takes a whole community of vendors and business partners to build a secure data environment.
Laurence Pitt's picture
“The Cloud Wars” may be dominating IT news headlines, but what does this phrase actually mean? And is it something that an enterprise needs to be concerned with?
Gunter Ollmann's picture
To the surprise of many, public cloud appears to be driving a renaissance in adoption and advancement of managed security service providers (MSSP).
Ashley Arbuckle's picture
With a holistic approach you can enable efficient segmentation across your infrastructure, identify anomalies faster by using process behavior deviations, and reduce your attack surface quickly.
Gunter Ollmann's picture
75 years may separate War World II from cloud SIEM, but we’re on the cusp of being able to apply the hard-earned learnings from Abraham Wald in our latest adversarial conflict – the cyberwar.
Preston Hogue's picture
This move to container-based development and agile methodologies has been great for innovation and iteration, but it’s also brought a massive shift in the application landscape with real impact on security teams.
Ashley Arbuckle's picture
Whatever form your move to the cloud takes, you need the right technologies and talent in place to ensure a secure transition.
Laurence Pitt's picture
The biggest truth about security in public cloud is that it provides security at scale. As a single organization, everything you do is at a scale of one.
John Maddison's picture
Analysis of a vendor’s underlying design and optimization approaches will enable you to select the solution that best meets your organization’s performance and budgetary requirements.
Ashley Arbuckle's picture
What can you do to mitigate the risk you may be inadvertently introducing to your public cloud deployments?