Docker Security

Delivering Shift-Left Security with NeuVector and JFrog Xray

Bringing Kubernetes app security insights to developers By Henrik Rosendahl & Craig Peters Kubernetes, the container and orchestration tool favored by enterprises, provides great benefit in automating many aspects of application deployment at scale. But, like any emerging technology, there are perils as well. Administrators are learning that deployments of these new cloud architectures can… Read more »

Container Security

NeuVector 2.0 Is Now Available!

We’re happy to announce that the 2.0 release of the NeuVector Container Security Platform is now generally available! The 2.0 release is a major expansion of the platform to include end-to-end vulnerability scanning, automated real-time security incident response, and enhanced multi-vector detection of container attacks. Cloud-native enterprise integration is also enhanced with OpenShift and Kubernetes… Read more »

Docker Security

Automating Image Scanning with Jenkins

By Xiaofeng Sun Containers provide an easy and efficient way to deploy applications. But container images may contain open source code over which you don’t have a full control. Many vulnerabilities in open source projects have been reported, and you may decide to use these libraries with vulnerabilities or not after scanning the images and… Read more »

Docker Security

17 Backdoored Malicious Images Removed From Docker Hub, But Are You Really Any Safer?

By Fei Huang Docker Hub recently removed 17 backdoored Docker images. This action came after Fortinet reported some cryptomining activity which linked back to these images. Here are some of the interesting facts: Backdoors were hidden inside the MySQL and Tomcat images, which are some of the most popular application containers on Docker Hub. These… Read more »

Cloud Security

NeuVector Builds on Istio Service Mesh Concepts to Secure Microservices

The Security Mesh deployed by NeuVector is compatible with the Istio service mesh and provides a roadmap for future integration By Gary Duan The service mesh concept behind the Istio project provides a powerful and useful set of services which are critical for managing, monitoring and securing container-based services, especially those built on Kubernetes. This… Read more »