Container Security

Backdoor Found in Open Source SSH package

A serious backdoor vulnerability in a popular software package was recently reported. It was found in the ssh-decorator Python package. In this open source library, a log function was sending clear text IP addresses, login names and passwords to an external site: “ssh-decorate.cf/index.php.” This immediately became one of the hottest topics about which thousands of… Read more »

Container Security

OpenShift Security Automation

Containers and tools like Red Hat OpenShift enable enterprises to automate many aspects of application deployment, with many significant business benefits. But it’s easy to forget to automate the security aspects of containers. There are many built-in features for OpenShift security automation in the platform, but don’t stop there. Automating run-time security for OpenShift deployments… Read more »

Container Security

NeuVector Extends Red Hat OpenShift Availability with Role-Based Access Controls for Automated Run-time Container Security

The container firewall leader also adds Red Hat Container Registry scanning and a Jenkins plugin to automate vulnerability scanning during development SAN FRANCISCO – RED HAT SUMMIT – May 8, 2018 – NeuVector, the leader in Kubernetes security delivering the first and only multi-vector container firewall, today announced an expansion to its support for Red… Read more »

Container Security

The Ultimate Guide to Kubernetes Security

How to Deploy Kubernetes Containers in Production, With Confidence By Fei Huang and Gary Duan Containers and tools like Kubernetes enable enterprises to automate many aspects of application deployment, providing tremendous business benefits. But these new deployments are just as vulnerable to attacks and exploits from hackers and insiders as traditional environments, making Kubernetes security… Read more »

Container Security

Securing Containers at Run-time with a Kubernetes Security Mesh

By Gary Duan The term “service mesh” has become increasingly popular in recent years and now it seems like the right time to introduce a “security mesh” for a service mesh. Although the idea of a service mesh is not new, its potential hasn’t been realized until container platforms and software implementations have matured. Before… Read more »