Updated cryptojacking worm steals AWS credentials

A malicious cryptocurrency miner and DDoS worm that has been targeting Docker systems for months now also steals Amazon Web Services (AWS) credentials. What’s more, TeamTNT – the attackers wielding it – have also begun targeting Kuber… Continue reading Updated cryptojacking worm steals AWS credentials

Everyone’s talking about microservices, who’s actually doing it?

77% of organizations have adopted microservices, with 92% experiencing success with microservices, according to an O’Reilly survey. success with microservices The report surveyed 1,502 software engineers, systems and technical architects, enginee… Continue reading Everyone’s talking about microservices, who’s actually doing it?

New vulnerabilities in open source packages down 20% compared to last year

New vulnerabilities in open source packages were down 20% compared to last year suggesting security of open source packages and containers are heading in a positive direction, according to Snyk. Well known vulnerabilities, such as cross-site scripting,… Continue reading New vulnerabilities in open source packages down 20% compared to last year

Palo Alto Networks Embeds ML Models in Firewalls

Palo Alto Networks (PAN) today unveiled a series of next-generation firewalls (NGFW) that rely on machine learning (ML) models running inline rather than signatures to thwart cybersecurity threats in real-time. Anand Oswal, senior vice president of pr… Continue reading Palo Alto Networks Embeds ML Models in Firewalls

Organizations look to build resiliency with hybrid and multi-cloud architectures

Hybrid and multi-cloud architectures have become the de-facto standard among organizations, with 53 percent embracing them as the most popular form of deployment. Advantages of hybrid and multi-cloud architectures Surveying over 250 worldwide business … Continue reading Organizations look to build resiliency with hybrid and multi-cloud architectures

Shifting Cloud Security Left with Infrastructure as Code

Introduction and Executive Summary DevOps and the continuous integration/continuous deployment (CI/CD) pipeline are revolutionizing application development, test, and cloud delivery, enabling developers to write the application code and define the clou… Continue reading Shifting Cloud Security Left with Infrastructure as Code

Enterprises regard the cloud as critical for innovation, but struggle with security

Most enterprises (85%) believe embracing the public cloud is critical to fuel innovation, but the majority are not equipped to operate in the cloud securely, according to a DivvyCloud survey of nearly 2,000 IT professionals. In fact, of those surveyed … Continue reading Enterprises regard the cloud as critical for innovation, but struggle with security