CLOUD SECURITY

Falco Open Source Adds AWS Cloud Security Monitoring

Sysdig | October 13, 2021

 Sysdig  announced the addition of cloud security monitoring functionality to the Falco open source software project. The new Amazon Web Services (AWS) CloudTrail plug-in provides real-time detection of unexpected behavior and configuration changes, intrusions, and data theft in AWS cloud services using Falco rules. The Falco community developed this extension with Sysdig based on a new plug-in framework that allows anyone to extend Falco to capture data from additional sources beyond Linux system calls and Kubernetes audit logs. As organizations manage critical data across multiple clouds, they need consistent threat detection across their distributed environments.

Additional plug-ins will allow organizations to use a consistent threat detection language and close security gaps by using consistent policies for workloads and infrastructure. In addition, more than twenty new out-of-the-box policies supporting compliance frameworks were released.Falco, a cloud-native runtime security project, is the de facto detection engine for containers and Kubernetes with over thirty million downloads. Created by Sysdig and contributed to the CNCF, Falco is an Incubation-level hosted project. The new plug-in capability and framework have been contributed by the Falco community and Sysdig to the project over the last few months. As of today, the AWS CloudTrail plug-in is available for use in preview mode and contributors can build new plug-ins on the framework.

Real-time detection of cloud configuration risk and threats
Today, security teams are forced to export AWS CloudTrail logs into a data lake or security information and event management (SIEM) for processing, and then search for threats and changes to configurations that can indicate a risk. This approach adds delay in identifying risks, as well as cost and complexity.

Falco inspects cloud logs using a streaming approach, applying the rules to the logs in real time and immediately alerting on issues, without the need to make an additional copy of the data. This approach complements static cloud security posture management by continually checking for unexpected changes to configurations and permissions that can increase risk. In addition, it acts as a modern intrusion detection system (IDS), detecting threats based on unusual behavior that can indicate a threat.

Consistent tool for threat detection across containers and cloud
Cloud and security teams struggle with an ever-growing list of tools to master and manage. Falco provides a single tool for threat detection across container and cloud environments, reducing complexity by reducing the number of tools in the stack. Users can use the same rule language to create consistent policies for workloads and infrastructure, removing security gaps. Because there is a shortage of talent in both cybersecurity and DevOps, reducing the learning curve by using consistent tools for threat detection is critical.

Users can get started immediately using out-of-the-box rules contributed by the community that map to compliance frameworks and best practices. They can also create custom rules to meet their specific needs using standard YAML code.

The plug-in capability for Falco creates the foundation for contributions that will extend support to other cloud environments and operating systems. The AWS CloudTrail plug-in and additional out-of-the-box rules are immediately available to try in preview form on the Falco GitHub site. Falco users and contributors can access pre-release documentation now. The official release is planned in the upcoming months.

The Falco plug-in capability gives DevOps and security teams a single threat detection tool with a single rules language across container and cloud environments. This allows users to create consistent policies for workloads and infrastructure and close security gaps,” said Chris Aniszczyk, CTO of Cloud Native Computing Foundation. “The basis is now in place for rapid innovation by the community to extend Falco to additional cloud environments.

“Now Falco can detect threats across containers and AWS cloud services using a streaming approach,Users can immediately alert on indications of lateral movement without the cost and complexity of copying logs.”

-Loris Degioanni, Founder and Chief Technology Officer, Sysdig,

About Sysdig:
Sysdig is driving the secure DevOps movement, empowering organizations to confidently secure containers, Kubernetes, and cloud. With Sysdig, teams secure the build, detect and respond to threats, continuously validate cloud configurations and compliance, and monitor performance. Sysdig is a SaaS platform, built on an open source stack that includes Falco and sysdig OSS, the open standards for runtime threat detection and response. Hundreds of companies rely on Sysdig for container and cloud security and visibility. Learn more at sysdig.com.

Spotlight

With the cloud, organizations no longer need to plan for and procure physical devices and IT infrastructure weeks or months in advance. Instead they can instantly spin up hundreds or thousands of virtual machines using automated deployment tools and methods that deliver results faster while ensuring more consistency of controls and less manual errors. In order to benefit from adopting AWS Products, organizations with Good Laboratory, Clinical, or Manufacturing Practices (GxP) compliance requirements and their auditors will need to acquire new skills and consider changes to GxP policies and procedures that focus on making IT compliance more agile, automated, and security-oriented.


Other News
CLOUD DEPLOYMENT MODELS

Fosfor by LTI Expands Partnership with Snowflake to Accelerate Data Monetization on the Data Cloud

LTI | November 04, 2022

Fosfor, the Data Products Unit of Larsen & Toubro Infotech (BSE: 540005, NSE: LTI), today announced that it has been approved as a Snowflake Ready Technology Validation Partner. Achieving this validation confirms Fosfor’s DataOps product, Spectra, and Decision Intelligence product, Lumin, adhere to Snowflake’s best practices around performance, reliability, and security. Under the Snowflake Ready Technology Validation program, Snowflake audits and validates a company’s native integration with Snowflake based on functional and performance best practices. The audit requires a native connector that has been available for at least six months, as well as a set of joint customers and case studies. With this validation, Fosfor joins a list of prominent product companies that have been approved under this program. “Efficient access to quality data helps organizations quickly inform strategies and decisions – it is a must-have for our customers," says Tarik Dwiek, Head of Technology Alliances at Snowflake. “Fosfor’s take on monetizing data at speed and scale for enterprises complements Snowflake's commitment to capitalizing on the infinite potential of the Data Cloud and creates a winning proposition for our customers.” Along with LTI recently being awarded Elite tier partner status and receiving the Delivery Partner of the Year award at the 2022 Snowflake Summit, the Technology Ready designation further reinforces the long-standing partnership between the companies. A growing number of Fosfor customers are realizing the synergistic value created by combining Fosfor’s data and AI capabilities with Snowflake’s Data Cloud. “The Snowflake-Fosfor partnership is a natural fit in exploding value from Data & AI for enterprises globally and is creating immense value for our joint customers with Fosfor products’ seamless native connectivity to Snowflake. Fosfor products like Spectra are solving major DataOps challenges for enterprises, while Lumin converts data into decision insights with ease for business users, We are delighted to be in lockstep with Snowflake to strengthen our valued partnership and in our aligned vision to create limitless business impact for enterprises.” Satyakam Mohanty, Chief Product Officer, Fosfor Snowflake has been a key partner of LTI since 2018, and of the Fosfor product suite since its launch in December of 2021. Click here to learn more about the powerful combination of Fosfor and Snowflake. About Fosfor The Fosfor Product Suite is the only end-to-end suite for optimizing all aspects of the data-to-decisions lifecycle. Fosfor helps you make better decisions, ensuring you have the right data in more hands in the fastest time possible. The Fosfor Product Suite comprises of Spectra, a comprehensive DataOps platform; Aspect, a no-code unstructured data processing platform; Optic, a data fabric to facilitate data discovery-to-consumption journeys; Refract, a data science and MLOps platform; and Lumin, a decision intelligence platform. Collectively, the Fosfor suite helps businesses discover the hidden value in their data. The Fosfor Data Products Unit is part of LTI, a global technology consulting and digital solutions company with hundreds of clients and operations in 33 countries. For more information, visit www.fosfor.com. About LTI: LTI (NSE: LTI) is a global technology consulting and digital solutions company helping more than 500 clients succeed in a converging world. With operations in 33 countries, we go the extra mile to assist our clients and accelerate their digital transformation journeys. Founded in 1997 as a subsidiary of Larsen & Toubro Limited, our unique heritage gives us unrivalled real-world expertise to solve the most complex challenges of enterprises across all industries. Each day, our team of more than 50,000 LTItes enable our clients to improve the effectiveness of their business and technology operations and deliver value to their customers, employees, and shareholders.

Read More

CLOUD STORAGE

Wasabi Technologies Closes $250 Million in New Funding to Usher In the Future of Cloud Storage

Wasabi Technologies | October 04, 2022

Wasabi Technologies, the hot cloud storage company, today announced it has achieved unicorn status following $250 million in new funding. Wasabi raised $125 million in Series D equity led by L2 Point Management with participation from Cedar Pine; an affiliate of Cerberus Capital Management; and returning investors including Fidelity Management & Research Company and Forestay Capital, bringing the company’s valuation to over $1.1 billion. Wasabi also expanded its existing debt facility with MGG Investment Group to $125 million. Barclays acted as sole placement agent on the transaction. Wasabi provides fast, affordable, and highly reliable cloud data storage for businesses all over the world at 1/5th the cost of large hyperscale providers or on-premises storage, with no charges for egress or API requests and no complex tiering. The company's revenues more than doubled from 2020-2021, and Wasabi now has more than 40,000 customers in over 100 countries, 13,000 partners, 250+ global employees and 13 storage regions across North America, Europe, and Asia Pacific. The new equity will drive expansion into additional vertical markets and geographies, enhance Wasabi’s channel partnerships, and scale the company’s go-to-market team and global brand strategies. Meanwhile, the debt will be used to finance capital equipment and infrastructure in Wasabi’s storage regions around the world, and to invest in Wasabi’s technology capabilities to lay the groundwork for a new generation of cloud storage architecture. “Closing a large up round in this environment speaks to the spectacular growth of Wasabi, the magnitude of the cloud storage opportunity, and our leadership as the industry’s largest pure-play cloud storage vendor. At Wasabi, we focus on just one thing: cloud storage. We do it better than anyone else in the industry. Because of this singular focus, our team has achieved best-in-class performance and security at the lowest prices in the industry,” David Friend, co-founder and CEO of Wasabi Technologies Kerstin Dittmar, managing partner of lead investor L2 Point, will join Wasabi’s Board of Directors. “Wasabi provides a game-changing product that offers customers a simpler, faster, and significantly more economical solution to their cloud data storage needs. We believe this capital raise will allow Wasabi to continue to expand its offering across additional services and geographies to meet their global customers’ needs,” said Dittmar. “We are proud to partner with Wasabi to provide innovative solutions in cloud storage and security,” added Sam Barnett, PhD, executive chairman of Cedar Pine. “The importance of Wasabi’s technology is increasing in every industry.” Kevin Griffin, CEO of MGG Investment Group, also commented, “We seek to partner with best-in-class entrepreneurs and companies and are excited to continue supporting Wasabi Technologies and their global expansion.” In addition to the industry-leading performance of Wasabi hot cloud storage, the company partners with over 350 technology companies, including most of the world’s leading backup, disaster recovery, and surveillance companies. Wasabi is used to store data across a wide range of industries, including professional sports, energy and natural resources, finance, surveillance, education, manufacturing, consumer technology, healthcare, scientific research, and media and entertainment. “As our data needs continue to evolve, from player analytics, IoT, digital assets and even security, this presents an enormous learning opportunity for the organization,” said Brian Shield, senior vice president and CTO of the Boston Red Sox. “Wasabi provides a cost-effective cloud-based solution that enables us to retrieve content quickly and improve the level of video analysis and production we do here at the Red Sox.” About Wasabi Technologies Wasabi provides simple, predictable and affordable hot cloud storage for businesses all over the world. It enables organizations to store and instantly access an unlimited amount of data at 1/5th the price of the competition with no complex tiers or unpredictable egress fees. Trusted by tens of thousands of customers worldwide, Wasabi has been recognized as one of technology’s fastest-growing and most visionary companies. Created by Carbonite co-founders and cloud storage pioneers David Friend and Jeff Flowers, Wasabi is a privately held company based in Boston. Wasabi is a Proud Partner of the Boston Red Sox, and the Official Cloud Storage Partner of Liverpool Football Club and the Boston Bruins. About L2 Point Management L2 Point Management (“L2 Point”) is a San Francisco based investment firm providing innovative capital solutions for growth companies. With expertise across the capital structure, L2 Point works to address a common concern of late-stage companies today: the lack of an alternative cost of capital product between highly dilutive growth equity and operationally restrictive debt.

Read More

CLOUD SECURITY

KubeCon Co-Located Cloud Foundry Day Schedule Announced with Mix of Introductory Sessions and Technical Deep Dives

Cloud Foundry Foundation | September 17, 2022

The Cloud Foundry Foundation today announced the schedule for Cloud Foundry Day with anynines GmbH and VMware among the organizations taking center stage at the event. "We are very excited to hold our first in-person Cloud Foundry event after a three year hiatus, The event is meant to showcase the extensibility of Cloud Foundry. All the latest improvements to the core platform and various Cloud Foundry projects will be highlighted at the event. We are striving to create a balance for those who are experienced with Cloud Foundry as well as those who are looking to adopt it afresh. Cloud Foundry events are a great opportunity to meet hands-on practitioners and facilitate collaboration and discussions." Chris Clark, program manager at Cloud Foundry Cloud Foundry Day will be held on Tuesday, October 25, co-located with KubeCon + CloudNativeCon NA in Detroit. For this one-day event, the Cloud Foundry Foundation has joined forces with the program committee to curate a program that fosters collaboration among attendees and offers an interactive platform for education. "At the event, we have strived to put together an agenda that presents the best of Cloud Foundry," said Ram Iyengar, chief evangelist at Cloud Foundry. "Due to the broad nature of Cloud Foundry projects, our program committee had a hard time choosing what to showcase. Attendees will get to learn about the latest open source innovations happening in the areas of core Cloud Foundry, as well as extensions to Kubernetes in the form of Paketo Buildpacks and Korifi. The agenda is also a good mix of introductory sessions, technical deep-dives, and community updates." Sessions include: A Keynote from Cloud Foundry governing board member, Catherine McGarvey Introducing Korifi: The Evolution of CF on Kubernetes Cloud Foundry Technical Governance: Past, Present, and Future What's new with Paketo Buildpacks? Recap: Ten Years of Working With Cloud Foundry Grappling with Kubernetes Eventual Consistency in Korifi App Runtime Interfaces Extravaganza! New Features in BOSH: Improved NATS cert rotations Remote Debugging of .NET Core applications with Paketo Buildpacks + Visual Studio Code Stemcells are now Jam-packed with Jelly(fish) How we modernized and reduced the infrastructure costs for running CFZ The Future of Logs and Metrics in Cloud Foundry The registration fee for Cloud Foundry Day is $50, or free to attend online. Attendees can register for the event here. Cloud Foundry is an open source technology backed by the largest technology companies in the world, including, HCL, Huawei, IBM, SAP, and VMware, and is being used by leaders in manufacturing, telecommunications and financial services. Only Cloud Foundry delivers the velocity needed to continuously deliver apps at the speed of business. Cloud Foundry's container-based architecture runs apps written in any language on a choice of cloud platforms — Amazon Web Services (AWS), Google Cloud Platform (GCP), IBM Cloud, Microsoft Azure, OpenStack, and more. With a robust services ecosystem and simple integration with existing technologies, Cloud Foundry is the modern standard for deploying mission critical apps at global organizations. About Cloud Foundry Foundation The Cloud Foundry Foundation is a non-profit open source organization formed to sustain the development, promotion and adoption of Cloud Foundry as the industry standard for delivering the best experience for developers at companies of all sizes. The Foundation projects include Cloud Foundry, Paketo Buildpacks, Korifi, Eirini, BOSH, Open Service Broker API, CredHub, and more. Cloud Foundry makes it faster and easier to build, test, deploy and scale applications, and is used by more than half the Fortune 500, representing nearly $15 trillion in combined revenue.

Read More

CLOUD SECURITY

ThinkData Works Now Available On Google Cloud Marketplace

ThinkData Works | September 09, 2022

Data catalog provider ThinkData Works Inc has launched its catalog and enrichment services on Google Cloud Marketplace, providing customers with reduced time-to-value and access to Google Cloud’s leading AI and data analytics capabilities. The ThinkData Works catalog platform allows customers to make better business decisions by connecting to both internal and external data sources and providing rich metadata, governance, and discoverability features. Unlike alternative solutions, it offers unique enriched data feeds on global trade, demographics, business attributes, and more – fueling powerful insights when combined with existing internal data assets. Google Cloud Marketplace allows customers to quickly and simply access powerful software and Google Cloud-based data solutions. “Google Cloud is committed to helping organizations scale their data analytics and AI/ML initiatives,” said Dai Vu, Managing Director, Marketplace & ISV GTM Programs, Google Cloud. “With ThinkData Works’ data catalog available on Google Cloud Marketplace, customers will be able to easily access and act on data insights, enabling them to execute on data-driven initiatives with greater speed and at scale.” The partnership builds on a growing ecosystem of data and management tools available to customers of both organizations. “Many companies have invested in AI and ML solutions but find that data variety and poor data health restrict their progress, Availability on Google Cloud Marketplace means customers can more easily deploy our leading catalog platform through their existing relationship with Google Cloud, enabling them with the tools to manage and distribute data to unlock further AI and ML capabilities.” Brendan Stennett, ThinkData Works co-founder and Chief Technology Officer About ThinkData Works ThinkData Works unlocks the value of data to grow your business. Connect seamlessly to any source, drive critical insights, and deliver data while retaining visibility and control. Founded in 2014, ThinkData Works offers flexible data connections, an intuitive catalog interface, and secure tools to deliver data where it needs to be — inside or outside your organization. Purpose-built to handle the complexities of data variety, their unified cloud platform cuts overhead, fuels innovation, and drives revenue growth.

Read More

Spotlight

With the cloud, organizations no longer need to plan for and procure physical devices and IT infrastructure weeks or months in advance. Instead they can instantly spin up hundreds or thousands of virtual machines using automated deployment tools and methods that deliver results faster while ensuring more consistency of controls and less manual errors. In order to benefit from adopting AWS Products, organizations with Good Laboratory, Clinical, or Manufacturing Practices (GxP) compliance requirements and their auditors will need to acquire new skills and consider changes to GxP policies and procedures that focus on making IT compliance more agile, automated, and security-oriented.

Resources