|
By Tim Miller
In our previous post, we explored the essentials of cloud detection and response (CDR), highlighting how the cloud's scale and complexity have transformed cybersecurity needs. We discussed the types of threats unique to the cloud and the broad benefits that CDR systems offer to organizations aiming to secure their cloud environments. This follow-up takes us deeper into some of the challenges that arise with detecting and responding to threats in the cloud.
|
By Tim Miller
A recent survey from Gartner forecasts that worldwide end-user spending on public cloud services will total $679 billion in 2024, and that number is expected to jump to $1 trillion in 2027. Businesses left and right are moving to the cloud. But as they make their move, the old ways of protecting data—like building a virtual wall around your data (“perimeter security”)—are proving inadequate.
|
By Tim Miller
When high profile security events happen, it is essential for you and your team to have the information you require right at your fingertips. Using Panoptica’s powerful graph database and easy to use query engine, you are easily able to discover all the assets in all your cloud environments that could have compromised software installed.
|
By Reem Rotenberg
In today's cloud technology landscape, Kubernetes is widely used to orchestrate containerized applications, enabling deployment, scaling, and management. Applications in a Kubernetes environment benefit from high availability and resource efficiency, making them ideal for cloud-native development. However, challenges with filesystem consistency due to the ephemeral nature of containers can lead to discrepancies when they are restarted or modified.
|
By Roy Maor
Generative AI technology is rapidly evolving, offering groundbreaking capabilities in various fields, including cloud native environments and CNAPP (Cloud-Native Application) solutions. Development of generative AI technology holds immense promise for enhancing the capabilities and performance of cloud-native environments and CNAPP solutions.
|
By Becca Gomby
In the rapidly advancing realm of cloud-native security, Data Security Posture Management (DSPM) emerges as a critical framework, ensuring organizations maintain robust control over their data assets. As cloud environments evolve, understanding and implementing DSPM becomes vital for better securing data defenses. In this blog post, we'll delve into the basics of DSPM, its significance in cloud-native security and how Panoptica approaches DSPM within its CNAPP solution.
|
By Rami H.
Test API specification With the growing footprint of APIs, there is a strong need for secure-by-design APIs. A design blueprint of an API would be a helpful start in determining the security standard of an API. Fortunately, APIs have that blueprint known as an OpenAPI Specification. API Specifications play a crucial role in ensuring the security and functionality of APIs.
|
By Sarabjeet Chugh
Hey Panoptica Community, We've got some important enhancements to the Panoptica experience to share with you today. Brace yourselves as we introduce a fresh, user-friendly onboarding experience that's set to simplify and improve how you connect and engage with Panoptica!
|
By Meenakshi Kaushik
Panoptica Cisco’s Cloud Application Security platform provides end-to-end lifecycle protection for cloud native application environments. It empowers organizations to safeguard their APIs, serverless functions, containers, and Kubernetes environments.
|
By Shweta Khare
AWS Re:Invent in Las Vegas is just around the corner, Nov. 27th – Dec. 1st, 2023. Stop by to meet us at booth 1276 (Outshift by Cisco)! For over a decade, the worldwide cloud community has gathered at re:Invent, fostering connections, drawing inspiration, and envisioning groundbreaking innovations. And we’re excited to be there as well!
|
By Panoptica
In this panel conversation with leaders in cybersecurity, get advice and insights into navigating between IT and Security teams with the advancement of “shift left” concepts as security increasingly moves to development teams and DevOps grows in importance. Further, hear tips and advice on educating Board Audit Committees and Executive Leaders on cloud trends and risk focus areas to maximize investment and focus on the risks that matter to the business.
|
By Panoptica
Hear about trends of innovative security leaders and how developers and security practitioners can best collaborate together through aligned incentives and strong communication. Outshift is Cisco’s incubation engine, innovating what's next and new for Cisco products and sharing our expertise on emerging technologies. Discover the latest on cloud native applications, cloud application security, generative AI, quantum networking and security, future-forward tech research, our latest open-source projects and more.
|
By Panoptica
There’s no such thing as a perfectly secure cloud environment. Vulnerabilities, holes left open by misconfigurations, over-permissive roles, and more create a target-rich environment for attackers. Breaking the cloud for good is the job of these expert hackers. View this panel session to learn about offensive security techniques and tactics for breaking the cloud to build the cloud better.
|
By Panoptica
In the latest episode of Cloud Unfiltered, Cole Kennedy - founder of TestifySec - breaks down the concepts of supply chain security and goes over the importance of attestation. Outshift is Cisco’s incubation engine, innovating what's next and new for Cisco products and sharing our expertise on emerging technologies. Discover the latest on cloud native applications, cloud application security, generative AI, quantum networking and security, future-forward tech research, our latest open source projects and more.
|
By Panoptica
In this episode, we're thrilled to have Liz Rice, the Chief Open Source Officer at Isovalent, join us for an insightful conversation on the transformative world of eBPF (Extended Berkeley Packet Filter) and the Cilium project.
|
By Panoptica
In this special edition of Cloud Unfiltered, recorded live from KubeCon Paris, host Michael Chenetz sits down with Matt Johnson, Cloud Security Field CTO at Palo Alto Networks, to dive deep into the evolving landscape of cloud native security. As organizations continue to embrace cloud technologies and Kubernetes, the complexity of securing these environments has never been more challenging. Matt shares his insights on the current state of cloud security, the importance of a holistic approach to securing applications across multiple layers, and the role of developers in the security ecosystem.
|
By Panoptica
In this special edition of Cloud Unfiltered, recorded at KubeCon Paris, host Michael Chenetz sits down with Sebastian Stadil, co-founder of Scalr. Sebastian has been pivotal in the DevOps community, especially with his recent work spearheading the OpenTofu initiative. During this insightful episode, Sebastian shares his journey in the tech world, the mission behind Scalr, and his perspectives on the evolution of infrastructure as code.
|
By Panoptica
Embark on a unique journey into the depths of cloud security in this riveting edition of Cloud Unfiltered, direct from the heart of KubeCon Paris. This episode, featuring the insightful Whitney Lee and the knowledgeable Victor Farcic, takes you on a "Choose Your Own Adventure" exploration of cloud security, offering a personalized path through the complex landscape of protecting cloud environments.
|
By Panoptica
Welcome to this exciting edition of Cloud Unfiltered, where your host Michael Chenetz, delves into the intricate world of cloud computing with special guest Travis Runty, the CTO of Public Cloud at Rackspace. With almost 17 years of experience at Rackspace, Travis brings a wealth of knowledge from his journey as an engineer, architect, and delivery lead, to leading public cloud strategy.
|
By Panoptica
Panoptica, Cisco’s cloud native application security platform provides contextualized cloud security to identify, prioritize, and remediate security risks and misconfigurations in complex cloud environments. The unified cloud security platform makes every stage of cloud security simple from “code to cloud,” providing software supply chain protection, cloud workload and runtime protection, cloud security posture management (CSPM), security for API communication to and between your microservices, and cloud detection and response (CDR) for realtime security protection.
|
By Panoptica
Explore the truth behind cloud security myths. Learn why focusing beyond common vulnerabilities is crucial, delve into application security strategies, and discover the power of bug bounties. Shift your perspective to secure from the inside-out and fortify your multi-cloud presence.
|
By Panoptica
In this cutting-edge eBook, explore an extensive analysis of the cloud threat landscape, derived from over 500 diverse cloud environments from Panoptica's own unique data set. Gain unparalleled insight into the evolving cloud threat landscape, while deep diving into attack path analysis, and trends across cloud service providers, CVEs, and Kubernetes coverage. This eBook reveals interesting trends in the market to help inform your own organization's cloud security posture and navigate the multi and hybrid cloud environments with increased confidence.
|
By Panoptica
In the ever-evolving landscape of multi-cloud environments, the future of cloud security demands a paradigm shift. In this eBook, dive into the details of how looking at cloud environments from the perspective of an attacker to identify and prioritize critical security risks, can improve your cloud security. The power of the attack path is not just about surfacing findings; it's about visualizing them in a way that brings clarity to complexity, empowering you to make informed decisions swiftly.
|
By Panoptica
Unlock the secrets of Amazon S3 bucket security with our comprehensive guide. Learn about S3 basics, access control methods, and the potential risks of misconfigurations. Discover real-world examples, best practices, and how to safeguard your data from breaches and vulnerabilities.
|
By Panoptica
Learn about the power of leveraging graph-based cloud security technology to improve cloud security teams' ability to navigate and assess critical risks in multi-cloud environments. This whitepaper reveals why modern security teams are turning towards graph-based technology to accurately discover and prioritize cloud risks. Understand the nuances, benefits, and the need for a graph-driven approach alongside attack path analysis capabilities, to better secure multi-cloud ecosystems.
- April 2024 (14)
- March 2024 (6)
- February 2024 (9)
- January 2024 (3)
- December 2023 (2)
- November 2023 (6)
- October 2023 (4)
- September 2023 (3)
- August 2023 (2)
Panoptica is a cloud-native security platform designed to protect the Kubernetes orchestration environment and containers, microservices, APIs, serverless functions, and the software supply chain. It simplifies the job of comprehensively securing your cloud-native application development lifecycle—from build pipelines to workload runtimes running in one or more clouds.
Panoptica provides visibility, prioritizes risk, and offers remediation guidance to take policy-driven action to protect your applications from security attacks. It enables frictionless collaboration among DevSecOps and supports open-source innovations using sigstore and the OpenClarity portfolio.
Best-in-class application security:
- Cloud native application security solution: Reduce tools and vendors as you create secure, compliant cloud native apps.
- Attack path analysis: Look at paths from diverse angles and get help with risk mitigation and resolution.
- Code & CI/CD security: Get real-time vulnerability detection from development to runtime.
- Cloud security posture management (CSPM): Scan, monitor, and remediate critical attack paths in your cloud stack instantly.
Panoptica lets you innovate your modern cloud-native applications faster and reduces time to market by driving security automation through the entire application development process.