Security in Google Cloud Platform (GCP) is straightforward, right? GCP gives you everything you need to secure your workloads? If your answer was ‘No’, you’re in the right place. Welcome to Part 1 of the Valtix blog series on GCP.…
This is a detailed follow-up to our initial analysis of the Palo Alto Networks Cloud NGFW for AWS announcement. In this blog, I’ll explore the critical gaps of the PAN Cloud NGFW offering. These technical gaps of Palo Alto Networks Cloud…
Verizon DBIR continues to be an extremely valuable analysis of security incidents and breaches year over year (and some of the embedded humor definitely makes for easy reading). Here’s what stood out in 2021 in relation to public cloud security:…
“Our recent initiative was the result of LOG4SHELL, which I think made a lot of organizations take a hard look at what they could and could not do in dealing with post-exploitation detection with IDS / IPS in our public…
A few things are becoming clear as we near the end of the first month of the Log4Shell vulnerability: Attacks and exploits are continuing with millions of attacks per hour and attributed to nation-backed as well as opportunistic hackers. And,…
Also, see our second blog titled: "Log4Shell Observations: Why Protecting Workloads with Native, Layered Defense Is Essential" LOG4J Overview When news of CVE-2021-44228 hit mainstream media, every network defender collectively sighed, “It’s always on a Friday.” A zero day RCE…
Azure Gateway Load Balancer provides a way for customers to use service chaining concepts from the software-defined networking (SDN) world to deploy advanced network security as a service to protect their applications. This simplifies putting network virtual appliances (NVAs) like…
Simplifying compliance for public cloud applications that deal with cardholder data Meeting compliance standards is often seen as a major challenge due to the comprehensive nature of requirements, need for continuous documentation of evidence, and perception that compliance is about…
Another week, another exploit in public cloud infrastructure. What’s going on? Overall, what’s broken here are issues in what the industry has dubbed platform-as-a-service (PaaS) aka high-level cloud services. This is a wake-up call for all of us to do…
Sometimes the smallest of features makes a world of a difference. This post details the recent Amazon VPC routing enhancements that allow customers to inspect traffic between subnets in an AWS VPC. On the surface, this feature from AWS looks…
