Blog
A critical, high severity vulnerability (CVSS v3.0 10/10 rating) in the Apache Log4j open source Java logging library was disclosed Thursday, December 9 on the foundation’s github page. Enterprises are advised to immediately access the likelihood of being affected by this vulnerability and operate under an ‘assumed breach’ mentality to assess logs and review unusual network activity especially egress connections.
There are many attack vectors for cloud-native Kubernetes and container deployments, some new and some traditional. To help organizations learn about these and protect against them, MITRE has published a knowledge base of techniques and tactics in a new matrix focused on containers.
NeuVector discusses the security challenges with containers and approaches software and security teams can take to elevate their cloud-native app security.
CEO Stephanie Fohn is also honored for her excellence leading and growing the container security leader
How to Ensure that the Infrastructure Remains Secure and Applications Are Secured Before Deployment