Cloud Security

CloudPassage Debuts Halo Cloud Secure, Delivering Unparalleled, Continuous Security of Public Cloud Infrastructure

Grazed from CloudPassage

CloudPassage today announced the general availability of Halo Cloud Secure, which offers comprehensive and continuous protection of public cloud infrastructure, delivering security and DevOps teams a "single pane of glass" view of security and compliance across all of their cloud service provider (CSP) accounts.

Organizations face an increase in vulnerabilities as security teams struggle to maintain effective, real-time visibility into public cloud infrastructure. Maintaining security visibility of dynamic computing environments can be difficult due to decentralization of the IT department, the expanding public cloud infrastructure attack surface and cloud service misconfiguration. According to The 2018 Cloud Security Report, 62 percent of cybersecurity professionals see infrastructure-as-a-service (IaaS) misconfigurations as the biggest threat to their public clouds environments. Additionally, 43 percent of cloud security professionals report lack of visibility into infrastructure security as the biggest operational challenge.

McAfee Offers Free McAfee Skyhigh Security Cloud to Help Secure State Election Systems

Grazed from McAfee

In an effort to help secure U.S. election systems, McAfee, the device-to-cloud cybersecurity company, has announced it will offer state election officials in all 50 United States access to a free twelve-month license of McAfee Skyhigh Security Cloud. The McAfee Cloud for Secure Elections Program will help ensure that the cloud-based storage services housing voter and citizen data are properly configured for maximum security and are continuously monitored for internal and external intrusion, and that no citizen or voter data is improperly uploaded to or shared from cloud services.

Twistlock Secures $33M in Funding to Fuel Continued Leadership in Cloud Native Security

Grazed from Twistlock

Twistlock, a leader in container and cloud native cyber security, today announced it raised $33 million in Series C funding, led by ICONIQ Capital. In addition to ICONIQ, existing investors YL Ventures, TenEleven, Rally Ventures, Polaris Partners and Dell Technologies Capital all participated in the round, which brings Twistlock's total funding to $63 million to date.  This funding will allow Twistlock to scale its operations and build upon the leading customer and partner base established over the past three years.

"Since our first release in 2015, it's been clear that containers and cloud native were the future - and that there was a huge gap in security platforms that not only protected these new technologies - but also leveraged them to deliver stronger defense than ever before possible. We're proud of our leadership in the industry and the hundreds of customers protected by Twistlock today. Our partnership with ICONIQ reflects this success, and their focus on helping market leaders cement their position sets the stage for our ongoing growth," said Ben Bernstein, Twistlock CEO.

 

Aviatrix Software-Defined Cloud Routing Solution Adds Important Security Measures for AWS VPCs

Grazed from Aviatrix

Aviatrix, a pioneer in software-defined (SD) cloud routing and an inaugural AWS Network Competency partner, today announced a new security capability for its AVX SD cloud routing solution. The AVX virtual private cloud (VPC) egress security feature makes it easy to both discover and control internet traffic leaving Amazon Web Services (AWS) VPCs, allowing organizations to more effectively secure egress traffic against internal threats and external attacks.

The AVX VPC egress security capability also enables organizations to comply with internal best practices and industry regulations such as Payment Card Industry (PCI) standards, which require controls and restrictions in place to deny unauthorized outbound traffic related to cardholder data.

"Moving resources to the public cloud doesn't absolve organizations of the strict security and regulatory requirements governing how they manage their enterprise data traffic," said Aviatrix CEO Steven Mih. "Internet-bound VPC egress traffic has been a blind spot, making it nearly impossible for cloud engineers to distinguish between legitimate and illegitimate destinations. As organizations move more of their workloads to the public cloud, they need cloud-specific tools to give them both visibility into and control over AWS VPC egress traffic."

SentinelOne Announces Partnership with Avid Secure to Bring Complete Visibility to Cloud Security

Grazed from SentinelOne

SentinelOnethe autonomous endpoint protection company, has partnered with Avid Secure, an intelligent cloud security and compliance company, to provide security teams with complete visibility into their cloud workloads-including their hosts and networks. By combining SentinelOne with Avid Secure, security professionals are instantly able to determine whether or not resources are protected and prioritize their protection needs.

"Agility is a key use case for public cloud adoption. SentinelOne and Avid Secure's combined solution provides real-time cloud workload protection status at your fingertips. This is critical for migrating several petabytes of our data and many services to AWS and Azure cloud platforms," said Aaron Peck, Vice President and CISO, Shutterfly Inc.

Carbon Black Introduces Cb LiveOps for Real-Time Query and Response

Grazed from Carbon Black

Carbon Black announced the release of Cb LiveOps. Cb LiveOps extends core functionality of osquery to empower organisations to ask questions of all endpoints, take action to remediate identified issues in real time, and simplify operational reporting. It is the newest offering built on Carbon Black's groundbreaking Cb Predictive Security Cloud (PSC), a platform that delivers complete endpoint prevention, detection, and response, all from a single agent.

Delivering Cb LiveOps on the PSC gives customers a consolidated and comprehensive, cloud-delivered security stack, one that bridges security and IT operations. As a result, organisations can move away from existing offerings in the market, such as those offered by Tanium and CrowdStrike, to a solution that delivers a full suite of functionality serving both security and IT teams. With Cb LiveOps, security teams can perform in-depth investigations, conduct remote remediation from the cloud, and perform on-demand vulnerability assessments, all within a single solution.

 

Symantec Introduces Cloud Workload Protection Suite; Automates Visibility & Security for AWS, Azure and Google Cloud Platform

Grazed from Symantec

Symantec Corp. has announced new additions to Symantec Cloud Workload Protection (CWP) Suite, adding multilayered anti-malware scanning for workloads, protecting both compute and storage.

The demand for greater business agility has led many organizations to adopt a hybrid cloud infrastructure often combining on-premises, public and private clouds. However, traditional on-premises security tools do not have the cloud-native integrations required to protect and scale with workloads and storage in these dynamic environments. Symantec CWP and CWP for Storage include multilayered anti-malware protection powered by industry-leading Symantec Endpoint Security (SEP) technologies to help discover and mitigate viruses and threats. CWP helps automatically discover, visualize and protect workloads across heterogeneous hybrid cloud data center environments using a single agent, single console solution. The solution supports physical on-premises servers, virtualized private clouds, and public cloud platforms including Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).

CrowdStrike Enhances Security Hygiene for Workloads on AWS

Grazed from CrowdStrike

CrowdStrike Inc. today announced the availability of Falcon Discover for Amazon Web Services (AWS) workloads. Falcon Discover provides security, operations and development teams with detailed visibility and extensive control over Amazon Elastic Compute Cloud (Amazon EC2) instances, improving overall security posture.

As today's enterprises continue to migrate their critical data and implement hybrid centers to host workloads that are both on-premises and on the cloud, maintaining security consistently is challenging. Today, many organizations of all sizes lack security resources and are looking for solutions that are easy to deploy, manage, and integrate.

Falcon Discover allows organizations to quickly visualize existing Amazon EC2 deployments across all regions (including instances without an endpoint security product installed) and subsequently monitors cloud trail logs for any modifications to the environment. As a result, the customer has a more complete picture of their networks and any systems or applications, enabling centralized, automated management and improving the organization's security posture.

Darktrace Cloud Protects Next Wave of Cloud Computing Models and More SaaS Applications

Grazed from Darktrace

Darktrace has announced that Darktrace Cloud can protect the next wave of cloud computing models, applications, and devices with its multi-award-winning cyber AI technology. The enhanced capability announced today comes in response to soaring demand for Darktrace Cloud and the accelerated adoption of innovative cloud architectures, such as edge computing and IoT data stored in the cloud.

Over 500 Darktrace customers use Darktrace Cloud to defend cloud environments and SaaS applications including Addivant, Innovating Capital, TruWest Credit Union, and City of Las Vegas.

"With Darktrace Cloud, we are shining a flashlight into the darkest corners of our digital infrastructure," commented Collin McCreath, Director of Information Technology at Addivant. "The ability to leverage Darktrace's AI to identify vulnerabilities and unknown threats in real time has fundamentally transformed our cyber security strategy. We now have unparalleled visibility of all our cloud environments and SaaS applications, and can better understand not only the configurations of our cloud workloads, but the movements between our entire digital business."

Alcide Announces New Release of its Cloud-Native Security Platform for Modern Data Center and Cloud Environments

Grazed from Alcide

Alcide, provider of the most comprehensive full-stack cloud native security platform, today announced a new release of its Cloud Native Security Platform. The new version, on the heels of the platform's general availability in April 2018, represents a significant milestone based on extensive work with existing customers and design partners, adding features while improving performance and scalability.

Alcide's platform provides unprecedented granular visibility, control and security for a wide range of modern cloud-native environments, including containers, virtual machines, serverless computing and service mesh, as well as physical data centers. The result is not just deeper insight into complex infrastructures, but robust security against cyberattacks through the following capabilities: application aware micro-segmentation, a network visualization and connectivity map, advanced threat protection and embedded security policies.