Secure Your Cloud – Know the Difference between CSPM and KSPM
Conventional CSPM tools don’t sufficiently cover K8s clusters – dedicated tools are a must to address Kubernetes’s unique challenges The post Secure Your Cloud – Know the Difference between CSPM and KSPM ...
Sometimes What Sounds Benign Can Bite You: An Unexpected Implication of Lambda Privileges
Learn how an AWS service usage and permissions combination discovered by Ermetic may increase risk upon a certain non-compliance The post Sometimes What Sounds Benign Can Bite You: An Unexpected Implication of ...
The Default Toxic Combination of GCP Compute Engine Instances
By default, compute instances in GCP are prone to a toxic combination that you should be aware of, and can avoid and fix The post The Default Toxic Combination of GCP Compute ...
Shared Responsibility Model in the Cloud
CSPs have embraced a “shared responsibility model” to define the security responsibilities for different components of the architecture The post Shared Responsibility Model in the Cloud appeared first on Ermetic ...
Mastering the Art of Kubernetes Security
With Kubernetes’ explosive adoption by the development community comes an urgent need to secure K8s clusters and ensure their compliance effectively The post Mastering the Art of Kubernetes Security appeared first on ...
When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities
Learn how now-patched Azure API Management service vulnerabilities revealed by the Ermetic research team enabled malicious actions The post When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities appeared first ...
Cloud Workload Protection (CWP) Best Practice – Focus on Impact, Not Volume
How to do CWP right to prepare your organization and protect it from the next widespread vulnerability The post Cloud Workload Protection (CWP) Best Practice – Focus on Impact, Not Volume appeared ...
Terraform Lab: Taking the New VPC Endpoint Condition Keys Out for a Spin
Our new open source Terraform project offers hands-on experience with VPC endpoints and demos AWS's new condition keys for securing EC2 instances The post Terraform Lab: Taking the New VPC Endpoint Condition ...
Federating Kubernetes Workloads with Cloud Identities
Your K8s workloads legitimately need access to sensitive cloud resources – federated identities let you grant it easily and securely The post Federating Kubernetes Workloads with Cloud Identities appeared first on Ermetic ...
Navigating Cloud Security: Why Segregating Environments from Dev to Production is so Important
Segregation in cloud environments is important for security - this post explores why and offers best practice tips for acting on it. The post Navigating Cloud Security: Why Segregating Environments from Dev ...