Andy Purdy argues that the best approach to security is to require a diversity of suppliers and clear divisions of responsibility.

The storage vendor isn’t aware of any customer attacks resulting from the vulnerability and said it could only have potentially affected a small portion of the customer base.

Adlink and Google Cloud partner on IoT; Red Hat debuts a Kubernetes-native Java framework; and news, partnerships, and releases from RSA.

The currency miners were relying on a Docker runC vulnerability discovered in early February (later patched by Docker Inc.) in combination with an exposed remote Docker API.

The increasingly complex array of cloud environments used by businesses provides bad actors with great opportunities to sneak into corporate networks.

Founded by former Yahoo security officer Jeremiah Grossman, WhiteHat takes a DevSecOps approach to protecting applications.

The attacks occurred after security research firm Pen Test Partners posted a blog containing demonstration code on how to exploit the routers. The firm was involved in initially finding

The company also released research that found 97 percent of companies report problems deploying and managing public clouds.

Companies want simplicity and security, so “I don’t think building virtual networks on top of the networks we already have is the way to go,” said 128 COO Patrick

Tenable, Forescout Both Merge Their IT and OT Security Platforms

The company’s customers include Nutanix, Raytheon, and Tavant. It has raised almost $30 million to date.

The new security tool it built analyzes data across 150 sources. It then uses machine learning to predict the likelihood a vulnerability will be exploited in the next 28

Cisco discovered a number of vulnerabilities affecting devices that connect to its SD-WAN software. This includes one critical security flaw to its vController software.

Threat researchers at Netskope and McAfee this week described new and potentially dangerous networking vulnerabilities.

This isn’t Microsoft’s first bounty program. Its largest reward offers up to $250,000 for finding critical flaws in its Hyper-V hypervisor.

The Cybeats IoT Radar app provides internal defense, monitoring, and lifecycle management directly to IoT devices.

The latest flaw was coincidentally announced on the same day as the latest version of Kubernetes was released. Project members said security concerns do not impact the release cycle.

It affects all Kubernetes-based products and services, and it gives hackers full administrative privileges on any compute node being run in a Kubernetes cluster.

“If you have an IoT device and it has any vulnerability and it’s visible from the Internet, it will be attacked in a number of minutes,” said Kevin McNamee,

Intel says not to worry and that the earlier patches it issued address these new security flaws as well as the older hardware bugs.

Docker containerizes Windows Server 2008; Rumors fly that Thoma Bravo will buy Symantec; CommScope buys Arris.

These 10 security companies raised more than $499 million in just the last month as security remains a top priority for many enterprises.

Google on Monday also said it would shut down its Google+ social network after a vulnerability exposed the personal data of approximately 500,000 users.

“If you’ve got mining happening on your network, you probably have other bad stuff happening on your network, and it’s probably much worse than mining,” said CTA’s Neil Jenkins.