Cloud-native safety supplier CrowdStrike has launched a cloud menace searching service referred to as Falcon Overwatch, whereas additionally including larger container visibility capabilities to its Cloud Native Utility Safety Platform (CNAPP).
Falcon Overwatch consists of agent and agentless menace searching
Falcon Overwatch is a standalone menace searching service that makes use of CrowdStrike’s cloud-oriented indicators of assault to realize visibility into developed and complicated cloud threats throughout your complete management aircraft, which incorporates the community parts and features used for cloud workloads.
The service leverages each the CrowdStrike CNAPP’s agent-based (Falcon cloud workload safety) and agentless (Falcon Horizon cloud safety posture administration) options, to supply larger visibility throughout a number of clouds, together with Amazon Net Companies, Azure, and Google Cloud.
“On one aspect, we obtain agentless information from over 1.2 billion containers utilizing Falcon Horizon,” says Param Singh, vp for Falcon Overwatch. “On the opposite aspect, we’ve information from our brokers put in by completely different organizations for his or her endpoints, similar to Linux servers operating within the cloud. By combining these collectively, we’re capable of ship simpler menace searching.”
CNAPP upgrades enhance container visibility
Elsewhere, CrowdStrike desires to enhance buyer visibility into software program containers to assist spot vulnerabilities, embedded malware, or saved secrets and techniques earlier than a selected container is deployed. It achieves this by figuring out and remediating rogue containers, or by correcting these which have drifted from their best configuration.
Responding to buyer demand, CrowdStrike is increasing these capabilties to work with Amazon’s managed, serverless Elastic Container Companies (ECS) Fargate, on prime of current assist for its Elastic Kubernetes Companies (EKS) Fargate service.
CrowdStrike has additionally prolonged its picture registry scanning capabilities to eight new container registries, together with: Docker Registry 2.0, IBM Cloud Container Registry, JFrog Artifactory, Oracle Container Registry, Purple Hat OpenShift, Purple Hat Quay, Sonatype Nexus Repository, and VMware Harbor Registry.
Lastly, CrowdStrike is including software program element evaluation capabilities for detecting and remediating vulnerabilities in well-liked open supply parts, together with Go, JavaScript, Java, Python, or Ruby dependencies in a buyer’s codebase.
Bringing container picture scanning capabilities to a rising vary of registries and managed providers ought to assist determine extra threats and misconfigurations inside containerized environments, and assist safe steady integration, steady supply (CI/CD) pipelines.
Copyright © 2022 IDG Communications, Inc.
/cdn.vox-cdn.com/uploads/chorus_asset/file/25841912/Silo_Photo_021008.jpg "Silo’s season 2 finale was excellent, but the show is running out of time")
