Container Security

Container Security Report by Gartner Highlights Maturing Options for Securing the CI/CD Pipeline

Gartner recently released a Technical Professional Advice report titled Container Security — From Image Analysis to Network Segmentation, Options Are Maturing* (by Joerg Fritsch, 28 August 2018, ID: G00366118), with what we believe is the most comprehensive overview of container security to date. In this report Mr. Fritsch identifies 11 threat vectors in an automated deployment… Read more »

Cloud Security

NeuVector and Alibaba Cloud Announce Partnership to Secure Kubernetes Containers

NeuVector’s multi-vector container security platform helps enable Alibaba Cloud’s public and private cloud customers to deploy Kubernetes with confidence San Jose, CA – September 24, 2018 – NeuVector, the leader in Kubernetes security delivering the first and only multi-vector container firewall, and Alibaba Cloud, the cloud computing arm of Alibaba Group, today announced a new… Read more »

Network Security

How Kubernetes Networking Works – Under the Hood

How to Understand and Set Up Kubernetes Networking, Including Multiple Networks   By Tobias Gurtzick Kubernetes networking is a complex topic, if not even the most complicated topic. This post will give you insight on how kubernetes actually creates networks and also how to setup a network for a kubernetes cluster yourself. This article doesn’t… Read more »

Container Security

How to Hack a Kubernetes Container, Then Detect and Prevent It

By Dieter Reuter As we talked about before in this blog, containers are just vulnerable to be attacked as non-container workloads. Hackers can use many of their old tricks on new containers, such as application exploits, network attacks, or phishing scams. In this post and demo, I’ll show how to hack a Kubernetes container using… Read more »

Container Security

Shift Left, Then Right for Runtime Application Container Security

In this new Solution Showcase by Enterprise Strategy Group (ESG), Senior Analyst Doug Cahill reviews recent research on application container adoption trends, then outlines how to build security into the DevOps and SecOps use cases. Abstract: The broad adoption of application containers for both new applications and those being refactored into a microservices architecture has… Read more »