Cloud security management challenges customers. That is according to Gartner, claiming that most cloud security failures are the end-users’ fault, not the providers. Considering the volatile landscape of cloud-native applications, even the smallest mistakes can lead to serious cybersecurity breaches and data leaks.
Since more workloads move to the cloud, securing those cloud environments will get more complex. With that in mind, Gartner came up with several essential tools for the evolving market of cloud security and assessment solutions. In this article, we will focus on the two more dominant ones:
The Emerging Market of CSPM and CWPP
Jan 4, 2021 9:19:02 AM / by Alon Berger posted in hybrid cloud, devsecops, cloud security, kubernetes, devops, Runtime, cloud, cwpp, cspm
Capturing 2020 - an Eventful Year With Alcide
Dec 21, 2020 12:27:59 PM / by Amir Ofek posted in devsecops, cloud security, kubernetes, devops, network security, Kubernetes security, secops
A year ago, when we planned our strategy and had our predictions for 2020, we most definitely could not predict how erratic 2020 would turn out to be. We too had to adjust and provide support for our employees’ and clients’ new needs. However, 2020 turned out to be a tipping point year for the Kubernetes community with a massive K8s adoption across the globe. Many companies made a huge shift to the cloud and in order to do it the most cost effective and efficient way they turned to Kubernetes. As a result we faced a growing need for Kubernetes Security and therefore 2020 has become the best year yet for Alcide.
Alcide and Amazon EKS Distro
Dec 1, 2020 4:17:21 PM / by Alon Berger posted in AWS, hybrid cloud, cloud security, kubernetes, devops, Kubernetes security, cloud
Kubernetes, as an open-source system for managing and orchestrating containerized applications, is widely used among numerous organizations and enterprises, looking for a better mechanism for deployment and scaling of applications. AWS has repeatedly kept innovating while providing its devoted customers with numerous supported services in any environment, whether it is on the cloud or on-premise.
Alcide's Latest and Greatest
Nov 5, 2020 9:39:46 AM / by Alon Berger posted in cloud security, kubernetes, devops, Kubernetes security, cloud
Amplify Your Kubernetes Security Monitoring with Alcide and New Relic
Oct 12, 2020 5:31:38 AM / by Alon Berger posted in devops, kaudit, monitoring
The dynamic, distributed, and ephemeral nature of multi-cluster Kubernetes deployments brings new challenges to security and compliance workflows and reporting.
Kubernetes Security for AWS Bottlerocket Applications
Sep 8, 2020 6:23:55 AM / by Alon Berger posted in AWS, devsecops, cloud security, kubernetes, devops, network security, Kubernetes security, bottlerocket, linux
New Kubernetes Node Storage-based DoS Vulnerability [CVE-2020-8557]
Jul 16, 2020 10:44:47 AM / by Gadi Naor posted in devsecops, kubernetes, devops, network security, Kubernetes security, Advisor, CVE, vulnerability
Vulnerability Description and Impact
Get Operational Security Insights and Alerts for Kubernetes using Alcide kAudit and Coralogix
Jun 18, 2020 9:59:26 AM / by Guest Writer: Amir Raz, Coralogix posted in devsecops, kubernetes, devops, Kubernetes security, foresnsics, kaudit, coralogix
Alcide Logs and Coralogix
Mitigate Attack Vectors with Alcide Kubernetes Security Platform
May 27, 2020 8:07:50 AM / by Rachel Cheyfitz posted in cloud security, security services, kubernetes, devops, alcide advisor, network security, Kubernetes security, Advisor, Runtime, SaaS
Last month, the Microsoft Azure Security Center published a fully detailed Threat Matrix for Kubernetes. This article identifies attack vectors unique to a Kubernetes environment. This important contribution is derived from the more generalized MITRE ATT&CK® framework that offers a complex matrix of common attack vectors.
Kubernetes-as-a-Service: EKS vs. AKS vs. GKE
May 4, 2020 7:39:14 AM / by Alon Berger posted in EKS, AWS, hybrid cloud, devsecops, cloud security, security services, containers, devops, Kubernetes security, aks, GKE