Cloud-indigenous safety company CrowdStrike has released a cloud menace hunting provider named Falcon Overwatch, though also introducing greater container visibility abilities to its Cloud Indigenous Application Security System (CNAPP).
Falcon Overwatch involves agent and agentless menace searching
Falcon Overwatch is a standalone danger looking assistance that works by using CrowdStrike’s cloud-oriented indicators of attack to acquire visibility into progressed and sophisticated cloud threats across the complete regulate aircraft, which incorporates the network parts and features used for cloud workloads.
The assistance leverages both of those the CrowdStrike CNAPP’s agent-based (Falcon cloud workload defense) and agentless (Falcon Horizon cloud stability posture administration) alternatives, to deliver higher visibility across multiple clouds, including Amazon Internet Services, Azure, and Google Cloud.
“On 1 aspect, we receive agentless details from around 1.2 billion containers applying Falcon Horizon,” says Param Singh, vice president for Falcon Overwatch. “On the other facet, we have data from our brokers installed by distinctive companies for their endpoints, these kinds of as Linux servers managing in the cloud. By combining these together, we are ready to supply much more successful danger looking.”
CNAPP upgrades enhance container visibility
Elsewhere, CrowdStrike needs to boost customer visibility into application containers to support spot vulnerabilities, embedded malware, or stored insider secrets ahead of a unique container is deployed. It achieves this by identifying and remediating rogue containers, or by correcting these which have drifted from their perfect configuration.
Responding to buyer demand, CrowdStrike is growing these capabilties to operate with Amazon’s managed, serverless Elastic Container Services (ECS) Fargate, on major of current aid for its Elastic Kubernetes Providers (EKS) Fargate support.
CrowdStrike has also extended its picture registry scanning capabilities to 8 new container registries, like: Docker Registry 2., IBM Cloud Container Registry, JFrog Artifactory, Oracle Container Registry, Red Hat OpenShift, Purple Hat Quay, Sonatype Nexus Repository, and VMware Harbor Registry.
Bringing container image scanning abilities to a developing selection of registries and managed companies need to aid discover additional threats and misconfigurations inside containerized environments, and enable safe continual integration, constant shipping (CI/CD) pipelines.
Copyright © 2022 IDG Communications, Inc.