Week in review: New Nmap, lateral phishing tactics, Kubernetes security matures

Sourec: helpnetsecurity.com Here’s an overview of some of last week’s most interesting news, articles and podcasts: Critical Bluetooth flaw opens millions of devices to eavesdropping attacks A newly disclosed vulnerability (CVE-2019-9506) in the Bluetooth Core Specification can be exploited by attackers to intercept and manipulate Bluetooth communications/traffic between two vulnerable devices. Pitfalls to avoid when improving your software development skills The dizzying pace of technological change makes knowledge acquisition and skill development a very big deal in the IT and

Read more

Pivotal CTO: Kubernetes means we’re all distributed systems programmers now

Source: devclass.com Kubernetes is changing the way organisations develop their software and manage their systems. But can we expect it to start changing the nature of organisations themselves? It’s certainly changed the nature of Pivotal – which launched a drive onto Kubernetes last month, not long after being lambasted by financial analysts for scaling back financial targets and being late to the Kubernetes party. We sat down with Cornelia Davis, Pivotal’s CTO at DevOps Enterprise Summit in June. She was

Read more

Containers 102: Kubernetes and the Basics of Container Orchestration

Source: redmondmag.com To know containers is to know Kubernetes, the gold standard for container orchestration and deployment. Here’s an explainer for how Kubernetes works and what makes it tick. In the first installment in this series, you learned about why and how containers became a new paradigm in IT infrastructure. When containers first emerged, there was a quick race to develop a container management system to provide functionality like networking, high availability and — important for database workloads — persisted

Read more

The future of VMware and Kubernetes integrations

Source: techtarget.com Kubernetes has become the most popular platform for managing containers. VMware might have a few opportunities to cash in on that, including vSphere-integrated Kubernetes. The rise of containers could mean a decline in VM popularity. However, if VMware can find a way to integrate the open source container platform Kubernetes with its vSphere or vCenter products, the vendor might have an opportunity to stay relevant in a shifting market landscape. Kubernetes has emerged as the platform of choice

Read more

Kubernetes security matures: Inside the project’s first audit

Source: helpnetsecurity.com Auditing 1.5 million lines of code is a heroic undertaking. With resources provided by the Cloud Native Computing Foundation (CNCF), the Kubernetes Project leadership created the Security Audit Working Group to perform an audit in an open, transparent, and repeatable manner, while also paving the way for future Kubernetes security reviews and research. It included members from Google, Red Hat, Salesforce, InGuardians, and input from the broader security community. We felt that the two most critical components of

Read more

Kubernetes open sourced their security audit. What can we learn?

Source: snyk.io Earlier this week, on 6th August, the Cloud Native Computing Foundation (CNCF) published a blog post detailing their recent Kubernetes Security Audit. Last year, the CNCF started their security audit program with three projects: CoreDNS, Envoy, and Prometheus. Since this pilot program was successful, the CNCF is rolling it out to other projects in their ecosystem. Kubernetes is an open source container orchestration engine for automating deployment, scaling, and management of containerized applications, and is the largest project

Read more

Kubernetes Looks Inside and Finds Security Holes

Source: sdxcentral.com The Kubernetes ecosystem took a look in the security mirror and found it has some work to do in order to ensure a better security posture for the container orchestration platform. The move comes as a rash of Kubernetes security flaws have cropped up over the past eight months. The introspective look came via the first security audit of Kubernetes conducted by the Cloud Native Computing Foundation (CNCF), which hosts the open source platform. The audit itself was

Read more

How hot is Kubernetes? Even traditional banks are transforming to embrace it

Source: techrepublic.com Kubernetes has become a standard infrastructure API with a gravitational pull that vendors like Red Hat, Mesosphere (now D2IQ), and Pivotal have been unable to escape. If you’re in the business of enabling enterprises to build applications, you’ve got to support Kubernetes. Period For those application-building enterprises, Kubernetes adoption has remained somewhat aspirational, with a 2018 CNCF survey finding 40% of enterprises running Kubernetes in production. Among those 60% not yet on the Kubernetes train you’d expect to

Read more

ClearDATA launches SaaS Solution for healthcare orgs to track patient records within Kubernetes

Source: helpnetsecurity.com ClearDATA, the leader in healthcare public cloud security and compliance, announced a new multi-cloud software offering, ClearDATA Locate, enabling healthcare organizations to build a more cohesive and traceable protected health information (PHI) inventory within Kubernetes workloads available on Amazon Web Services, Google Cloud Platform and Microsoft Azure Built with ClearDATA’s Healthcare Aware Distributed Tracing technology, this new software solution makes it easier for healthcare industry professionals to observe sensitive data in transit or at rest in any Kubernetes

Read more

Latest Kubernetes Release Focuses on Continuous Improvement and Stability

Source: www.infoq.com The Kubernetes team launched the 1.15 release on June 19th, 2019, the second release of 2019. According to the release announcement, the goal of the latest version is continuous improvement and extensibility. Kubernetes 1.15 includes new features, such as pruning on custom resource definitions, but relative to previous releases, focuses primarily on stability over enhancements. The majority of enhancements towards stability and extensibility were on custom resource definitions (CRDs). Custom resources is an extension of the Kubernetes API that enables users to add custom

Read more
1 2 3 4