Container Security

How to Protect Against Elasticsearch Ransomware Attacks

By Fei Huang, Co-Founder and CEO, NeuVector As if it wasn’t already bad enough, the ransomware attacks on MongoDB users continue to spread and have now targeted exposed Elasticsearch clusters. Like MongoDB, Elasticsearch is one of the most popular containerized applications and is widely used all over the world in datacenters. In these Elasticsearch ransomware attacks,… Read more »

Container Security

MongoDB Ransomware Attacks Illustrate the Need for Both Traditional and New Security Techniques

By Gary Duan, CTO, NeuVector The recently reported ransomware attacks on MongoDB are shocking not just by the sheer number of them – over 28,000 and counting – but also by how easily they were compromised. These attacks did not require any sophisticated malware or hacking schemes to pull off. They took advantage of poor… Read more »

containers vs virtual machines

Container Security

Containers vs Virtual Machines (vms) – A Security Perspective

By Henrik Rosendahl What are the arguments for containers vs virtual machines (VM’s)? Back in March 2016 Mike Coleman (@mikegcoleman) from Docker wrote a blog post titled: Containers Are Not VMs. Mike and I used to be colleagues at VMware EUC – working on delivering applications in virtual desktop environments. As you probably already know… Read more »

Container Security

15 Tips for a Run-time Container Security Strategy

By Fei Huang There’s been a lot of recent discussions online about container security, but most have focused on image scanning or the host and OS security. The lack of enterprise security tools for containers has caused people to focus too narrowly.  It’s like the old saying “when all I have is a hammer, everything… Read more »