How to think about container security
Are you thinking about container security? Traditional application security isn’t meant for container deployments. Learn strategies for securing your containers.
Posted in Container Security
Webinar: Secure your containers with GitHub and Synopsys
In our on-demand webinar with Bryan Cross (GitHub) and Dave Meurer (Synopsys), you’ll learn how to use integrated application security tools to secure containers at every layer.
Posted in Container Security, Open Source Security, Webinars
Securing containers at scale
Open source is the foundation of most modern applications. However, left untracked, open source can put containerized applications at risk of known vulnerabilities such as Heartbleed and CVE-2017-5638 found in Apache Struts. Tracking open source can be difficult in containerized production environments, which pose new challenges to application security. Organizations need visibility into the open […]
Posted in Container Security, Open Source Security, Software Composition Analysis
Establishing technology trust at Infosecurity Europe 2018
Infosecurity Europe is one of the leading information security events in Europe. The annual event, taking place this year from 5-7 June, brings together over 19,500 information security professionals, over 400 exhibitors showcasing the most cutting edge information security solutions, and thought leaders from around the globe. This year, Synopsys technical evangelist, Tim Mackey (@TiminTech), […]
Posted in Container Security, Webinars
OpsSight Container Security 2.0, Integrating SAST into DevSecOps, building hacker-proof voting
Black Duck by Synopsys announces OpsSight 2.0. Abbott strengthens pacemaker software against vulnerabilities. A year after disclosure, the Struts vulnerability is still a danger to thousands of companies. And the new Synopsys Security Mashup video is up. Software Integrity Insight is your resource on the cyber security and open source security news that made headlines […]
Posted in Agile, CI/CD & DevOps, Container Security, Medical Device Security, Static Analysis (SAST)
Announcing OpsSight Container Security 2.0 GA
Containers have restructured the way we think about our infrastructure, bringing development and operations teams closer together than ever before, and placing applications center stage in the infrastructure environment. Teams are massively scaling containerized deployments with Kubernetes and Kubernetes-based solutions, like Red Hat’s enterprise-grade container orchestration platform, OpenShift Container Platform. But in containerized deployments, because […]
Posted in Container Security, Open Source Security
NIST report on container security, GitLab Developer Report, VW and Audi remote hacks
Software Integrity Insight is your resource on the cyber security and open source security that made the headlines! 8 takeaways from NIST’s application container security guide via Synopsys Software Integrity: Chances are, hackers are aware of the growing popularity of containers as well, says technical evangelist Tim Mackey. Which is why we compiled eight takeaways […]
Posted in Automotive Security, Container Security, Open Source Security
8 takeaways from NIST’s Application Container Security Guide
Companies are leveraging containers on a massive scale to rapidly package and deliver software applications. But because it is difficult for organizations to see the components and dependencies in all their container images, container security risks associated with containerized delivery has become a hot topic in DevOps. This puts the spotlight on operations teams to […]
Posted in Agile, CI/CD & DevOps, Container Security
Data breaches, SirenJack, and serverless apps vulns
It’s nearly an all-Tim Mackey issue of Software Integrity Insight as our technical evangelist weighs in on data breaches, container adoption, GitHub, and open source serverless applications. Other stories in this week’s software integrity news include the SirenJack vulnerability, a security vulnerability potentially putting warning sirens across the city of San Francisco at risk, and […]
Posted in Container Security, Data Breach, Internet of Things, Open Source Security
Container adoption by the numbers
As application development teams are pressured to deliver software faster than ever, containers offer clear advantages. Docker debuted to the public in 2013, and since then there have been over 29 billion Docker container downloads. Benefits of containerization 66% of organizations adopting containers experienced accelerated developer efficiency 75% of companies achieved an increase in application […]
Posted in Container Security, Infographic