Linux servers form the backbone of nearly every enterprise infrastructure, from traditional data centers to cloud-native environments. But securing them isn’t as simple as hardening the OS or ticking off a compliance checklist. Especially in hybrid environments or scaling cloud workloads, Linux server security raises urgent questions: We’ve covered Linux hardening basics. Here, we’re going […]

As artificial intelligence (AI) adoption accelerates, from internal model development to widespread use of third-party AI technologies and generative tools, teams know their attack surfaces have spread. But that doesn’t mean they’re on board for tool subcategories like AI Security Posture Management (AI-SPM), let alone its compatriots like Cloud-SPM and Identity-SPM.  Yet, faced with the […]

In what reads like the summary of an ever-escalating arms race, the CEO of NVIDIA recently predicted that, as artificial intelligence (AI) is increasingly able to produce fake information at high speeds, defenders will have to match that speed using their own AI tools. Is he correct? Are AI adversaries inevitable? Just what are the […]

Organizations often require greater security and control than public cloud providers can offer — especially when handling highly sensitive data or operating in heavily regulated industries. In such cases, private clouds provide an ideal solution, offering superior control, customization, and enhanced security by eliminating the shared infrastructure of public clouds. However, this increased level of […]

Cryptojacking gained prominence in 2017 when browser-based mining made the exploitation of systems to produce cryptocurrency without the permission of users possible. Ever since, cloud-native environments have had to be on guard against this threat. But cryptojacking can be an overlooked threat. It’s not a risky unknown, like a Zero Day threat. And it’s often […]

Cloud migration security isn’t just about securing data in transit or ensuring compliance (those are foundational parts of a successful migration). It’s about mitigating deep, systemic risks that arise when shifting workloads from on-prem to cloud. That means that cloud migration security is not a one-time checklist but a strategic shift in visibility, control, and […]

Apps and their dependencies don’t run on their own — they need container runtimes to help power their execution by providing the right environment, resource management, and lifecycle operations for containers. While we’ve covered container runtimes and container runtime security, we haven’t looked at a foundational component of containers themselves — the Container Runtime Interface […]

There are a variety of approaches to workload security, ranging from zero-trust to network segmentation, agents or agentless – and more. Cloud workloads need securing, but the details of how to achieve a secure environment best, without standing in the way of agile development, make the roadmap to workload security less than direct.  We’re breaking […]

We’ve talked about container runtime security, but not all runtime security involves containers. In this article, we’re broadly exploring runtime security on its own, asking questions like: Is it effective in hybrid and multi-cloud environments? How can you integrate it into your larger security stack? Is it possible to get more out of runtime security […]

Running containers on Amazon Web Services (AWS) offers flexibility and scalability for modern application architectures, but it also introduces unique security, management, and compliance challenges. We’ve already discussed unique aspects of AWS container security. In this article, we take a broader view of the unique features of AWS containers that you need to know about […]