Cloud Security

LeanTaaS Secures Cloud-Based Apps on AWS with Signal Sciences

Signal Sciences today announced that LeanTaaS, a Silicon Valley healthcare analytics company, has chosen its revolutionary next-gen web application firewall (WAF) to secure cloud-based LeanTaaS apps on Amazon Web Services (AWS), as well as meet HIPAA compliance requirements. Signal Sciences WAF makes it possible for businesses like LeanTaaS to protect critical web apps on AWS and in multi-cloud environments from real attacks and threat scenarios. The solution will be showcased at the Signal Sciences booth #1404 at the AWS re:Invent conference from November 26-30 in Las Vegas, Nevada.  

The LeanTaaS iQueue platform uses lean principles, machine learning, and predictive analytics to digitally transform core operational processes in healthcare. It mathematically matches the demand for expensive, constrained healthcare resources with supply. More than 50 hospitals and health systems rely on the company's AWS cloud-based platform to increase patient access, decrease wait times, improve staff satisfaction, and reduce healthcare delivery costs. The company was looking for a solution that could not only secure its cloud-based web services, but scale and provide coverage quickly while not slowing down development.

Microservices Firewall Innovator Alcide Raises $7M to Redefine Cloud Security

Alcide, provider of the first Microservices Firewall for application networking security, has raised $7M in Series A funding from new investor CE Ventures alongside existing investors Intel Capital and Elron.

The funding, announced only seven months after the Alcide cloud-native security platform's general availability and the company's selection as a Gartner Cool Vendor, will be used to support a go-to-market strategy and a significant expansion into the US and EMEA markets.

Ben Weiss, partner at CE Ventures, will join Alcide's board as part of the round.

The Alcide cloud-native platform secures the plethora of cloud architectures common in today's cloud-native world and composed of different apps, architecture and infrastructure - each with its own unique needs, requirements and security protocols. The Alcide Microservices Firewall brings best-of-breed application-aware micro-segmentation, always on threat intelligence, powered by Alcide's embedded policies enforcement capabilities.

Awake Security Uncovers Malicious Intent Across On-Premise, Internet of Things and Cloud Infrastructure

Awake Security today unveiled the Fall release of its Awake Security Platform, an advanced network traffic analysis (NTA) solution designed to help organizations combat sophisticated cyber threats and improve overall visibility.

Awake's exhaustive intelligence is built on 360-degree visibility and a deep understanding of the business entities in the organization-whether those are traditional IT assets, Internet of things (IoT) devices, or cloud workloads. Through analysis of every communication between these entities, Awake's enhanced network detection and response platform better detects mal-intent and attacks that blend in with business-justified activity. This empowers security teams to stop insider attacks, credential abuse, lateral movement, data exfiltration, and more.

"We see a shift in the way security teams go about uncovering threats as their organizations embrace the cloud, IoT, and/or hybrid IT. Only looking for ‘known-bad' is no longer sufficient as it leaves security teams oblivious to advanced, non-malware oriented threats especially once the perimeter has been compromised. Modern security operations centers must focus on using analytics and artificial intelligence on real-time network data to rapidly uncover such threat activity," said Eric Ogren at 451 Research. "Awake's entity-centric NTA approach promises to help eliminate noise and provides security teams with the visibility, detection, and response features required to secure modern enterprise environments."

Caveonix Announces RiskForesight for VMware Cloud on AWS

Caveonix, the company providing proactive defense against risks in hybrid cloud environments, today announced that RiskForesight is available to customers of VMware Cloud on AWS. VMware Cloud on AWS brings together VMware's enterprise-class Software-Defined Data Center (SDDC) software and elastic, bare-metal infrastructure from Amazon Web Services (AWS) to give organizations consistent operating model and application mobility for private and public cloud. Caveonix's RiskForesight product delivers proactive risk management to customers of VMware Cloud on AWS.

RiskForesight is a multi-tenant cyber risk and compliance management platform for the hybrid cloud, enabling service providers to offer full workload protection to their customers. RiskForesight's patented engine, CaveoIQ, leverages predictive analytics and machine learning to build IT, cyber and compliance risk mitigation models across the full cyber control plane to ensure security, network, compliance and policy enforcement of all cloud-based workloads.

Threat Stack and Red Canary Announce Partnership to Drive Incident Response and Remediation in the Cloud

Threat Stack and Red Canary announced a partnership designed to offer response and remediation in the cloud. Together, Red Canary and Threat Stack will be able to reduce the mean time to remediation for security alerts identified by the Threat Stack Cloud Security Platform and Threat Stack Cloud SecOps Program.

Threat Stack's industry-leading full stack security observability across cloud infrastructure - from control plane, host, container, orchestration, and application layer - in combination with Red Canary, enables customers to streamline response efforts by outsourcing alert investigation and enabling customers to focus only on incidents that require active remediation. As an example, Ping Identity, the leader in identity defined security, have been looking for the next-generation cloud data breach detection and remediation capabilities offered by this partnership.

SonicWall Secures Hybrid Clouds by Simplifying, Enhancing Deployment for Enterprises, SMBs

SonicWall announced new Capture Cloud Platform capabilities that include Zero-Touch Deployment and Secure SD-WAN (software-defined WAN) designed for distributed enterprises and organizations with hybrid cloud environments. The company also announced enhancements to the Capture Security Center with personalized Risk Meters that deliver company-specific, real-time threat intelligence and risk scoring, as well as Hyper-V, Azure and AWS support for its virtual firewall series.

"Organizations are invested in hybrid cloud strategies where they're able to harness the power of both public and private clouds, but they require solutions that help simplify and secure their cloud migration initiatives," said SonicWall President and CEO Bill Conner. "Whether they are pursuing the benefits of a vendor's specific capabilities, looking to reduce the cost of hiring staff or seeking to reach compliance standards, SonicWall helps protect their migration while simultaneously giving more visibility and control of their environments."

Reducing Cost with Zero-Touch Deployment
SonicWall Zero-Touch Deployment allows organizations to quickly and securely configure firewall hardware at new locations without requiring advanced and costly on-site personnel. Once new products are brought online in remote locations, administrators can manage local and distributed networks through a single pane-of-glass using Capture Security Center, SonicWall's flagship cloud-based management and analytics SaaS platform.
 

iboss Announces Integration with Microsoft Cloud App Security

iboss announced an integration partnership with Microsoft Cloud App Security (MCAS). The partnership allows organizations to leverage Microsoft Cloud App Security in a more powerful way by integrating it with the iboss cloud. The iboss cloud secures user Internet access, on any device, from any location and this integration allows iboss cloud and MCAS to connect seamlessly. Through this connection, data from users is automatically sent from iboss cloud to MCAS to provide insight into cloud application use. In addition, risky applications sanctioned within Microsoft Cloud App Security are automatically synchronized with iboss cloud to ensure those applications are controlled to prevent data loss.

DH2i Launches DxOdyssey for Zero Trust Hybrid/Multi-Cloud Security

DH2i, the leading provider of multi-platform Software Defined Perimeter and Smart Availability software for Windows and Linux, today announced the launch of DxOdyssey, its new network security software that dynamically deploys perimeter security where needed in order to isolate services for fine-grained user access, creating a Software-Defined Perimeter (SDP). The new DH2i SDP offering gives medium and large organizations the perimeter security model needed for Zero Trust network connectivity between on-premises sites and/or multi-cloud environments. In addition, the new offering addresses customer desire for a highly scalable, self-healing networking solution that is easy to configure and manage, with a high ROI. DxOdyssey makes the application infrastructure "always-secure and always-on".

Today's medium and large organization security and network admins are well-aware of the difficulties that surround using traditional approaches such as virtual private networks (VPNs) for perimeter security to connect on-premises sites and/or multi-cloud environments. The issues include:

Wipro Collaborates with Check Point Software to Offer Cloud Security Services

Wipro Limited announced a new partnership with Check Point Software Technologies Ltd, a leading provider of cyber security solutions globally, to deliver Check Point's advanced and dynamic cloud security solution, CloudGuard IaaS.

This strategic worldwide partnership will further accelerate demand for the CloudGuard comprehensive suite of cloud security products, which are focused on advanced threat prevention and safeguarding enterprise cloud applications, infrastructure, and data against the most sophisticated fifth-generation cyber-attacks threatening organizations today. CloudGuard already protects more than 2,000 enterprise cloud environments.

Cloud security is a shared responsibility between the service provider and the customer, which can be a challenging model to implement. Through this partnership, Wipro and Check Point are enabling customers to maximize their investment in cloud infrastructure by defending against the most sophisticated fifth-generation cyber security threats to their cloud assets and data.

New McAfee Report Reveals Data in the Cloud More Exposed Than Organizations Think

McAfee, the device to cloud cybersecurity company, today released its Cloud Adoption and Risk Report, which analyzed billions of events in anonymized customers production cloud use to assess the current state of cloud deployments and to uncover risks. The report revealed that nearly a quarter of the data in the cloud can be categorized as sensitive, putting an organization at risk if stolen or leaked. Coupled with the fact that sharing sensitive data in the cloud has increased 53 percent YoY, those who do not adopt a cloud strategy that includes data loss protection, configuration audits and collaboration controls, will endanger the security of their most valuable asset-data-while exposing themselves to increased risk of noncompliance with internal and external regulations.

The study found that while organizations aggressively use the public cloud to create new digital experiences for their customers, the average enterprise experiences more than 2,200 misconfiguration incidents per month in their infrastructure-as-a-service (IaaS) and platform-as-a-service (PaaS) instances. Cloud service providers only cover the security of the cloud itself, not customer data or customer use of their infrastructure and platforms. Companies are always responsible for securing their data wherever it is, hence highlighting the need to deploy cloud security solutions that span the whole cloud spectrum, from SaaS (software-as-a-service) to IaaS and PaaS.

"Operating in the cloud has become the new normal for organizations, so much so that our employees do not think twice about storing and sharing sensitive data in the cloud," said Rajiv Gupta, senior vice president of the Cloud Security Business, McAfee. "Accidental sharing, collaboration errors in SaaS cloud services, configuration errors in IaaS/PaaS cloud services, and threats are all increasing. In order to continue to accelerate their business, organizations need a cloud-native and frictionless way to consistently protect their data and defend from threats across the spectrum of SaaS, IaaS and PaaS."