Tag: Red Hat Security

<h3>Implementing the CISA known exploited vulnerability mandate with greater ease</h3> <p><br /> <img alt="" height="229" src="https://lh4.googleusercontent.com/xGj9oBUjSLNwwGwJq9ZIrzXXkhqhmFUFuEzmO7_Zu1zGXT8_s8vBfnXCOE8arv0FJIDYRQJ9wdjymsY1mmzIWsuhELntj4oY1QdPY1FzL0xrnB56jMVXmw80nbXALoHtq3Z5ngkuBsOyjDt3820LNrtKXkvjUM5LW5tjPVQYbIvt_1ZROpZX0BAdqEFyNQ" width="357" /></p> <p><em>Source: <a href=&qu This article has been indexed from Red Hat Security Read the original article: Taking patch management to the next…

Read more →

<p>Cryptology is a young science.</p> <p>Though it has been used for thousands of years to hide secret messages, systematic study of cryptology as a science (and perhaps an art) just started around one hundred years ago.</p> <p>The first known evidence…

Read more →

<p>Following <a href="https://www.redhat.com/en/blog/getting-started-red-hat-insights-malware-detection">the announcement of the beta of the Red Hat Insights malware detection service</a> in August, we are pleased to announce that this service is now generally available. The malware detection service is a monitoring and assessment tool that…

Read more →

<p>Across government, organizations have extended operations from the datacenter to multiple public clouds to the edge. Now they need to manage data and deliver intelligent capabilities across those environments. More than ever, they must achieve those goals with greater simplicity,…

Read more →

<p>During <strong><a href="https://www.ansible.com/ansiblefest">AnsibleFest 2022</a></strong>, we announced the launch of <strong>Ansible validated content</strong>. This new initiative is focused on delivering an expert-led approach for automating your platform portfolio across infrastructure, networking, cloud, security and edge use cases.</p> <p>Ansible validated content is…

Read more →

<p>Today we present a new way to use the <strong><a href="https://www.redhat.com/en/technologies/management/insights">Red Hat Insights</a></strong> Advisor service by <a href="https://access.redhat.com/articles/6981482">using system tags</a> to enable extended security hardening recommendations.</p> <p>Not all systems are equal. For example, a web server and a workstation have…

Read more →

<h2><span><span><span><span><span><span>Introduction to attestation</span></span></span></span></span></span></h2> <p><span><span><span><span><span><span>Attestation is a confidential computing keystone. With attestation, workload owners can fully assert the trustworthiness of the hardware and software This article has been indexed from Red Hat Security Read the original article: Understanding the Confidential Containers…

Read more →

<p><span><span><span><span><span><span>A private registry can be useful for storing Linux </span></span></span></span></span></span><a href="https://www.redhat.com/en/topics/containers"><span><span><span><span><span><span><span><span>container images</span>&am This article has been indexed from Red Hat Security Read the original article: Red Hat OpenShift: How to create and integrate a private registry with stronger security capabilities

Read more →

<p><span><span><span><span><span><span>On November 8th, 2022, Microsoft released a series of security updates for various Windows operating systems to fix two security issues:</span></span></span></span></span></span></p> <ul> <li aria-level="1"><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37966"&amp This article has been indexed from Red Hat Security Read the original article: Red Hat…

Read more →

<p><span><span><span><span><span><span>On November 8th, 2022, Microsoft released a series of security updates for various Windows operating systems to fix two security issues:</span></span></span></span></span></span></p> <ul> <li aria-level="1"><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37966"&amp This article has been indexed from Red Hat Security Read the original article: Red Hat…

Read more →

A few months ago, I wrote my first blog for Red Hat: Getting a list of fixes for a Red Hat product between two dates is easy with daysofrisk.pl This article has been indexed from Red Hat Security Read the…

Read more →

Red Hat’s products are distributed through numerous methods, including RPMs, ISOs and zip files. Over the past several months, we have been working across the organization to design and implement a plan to provide signatures for all zip file types…

Read more →

Last quarter, I introduced the issue where our existing public key cryptography algorithms are vulnerable to a potentially new form of computers called quantum computers. In this article I introduce one of the better understood potential replacements: Hash-based signatures. This…

Read more →

Container and Kubernetes adoption brings the promise of faster application development and delivery at larger scales — however, it also brings with it new security challenges. Protecting cloud-native applications can require significant changes in how organizations approach IT security. They…

Read more →

Red Hat’s products are distributed through numerous methods, including RPMs, ISOs and zip files. Over the past several months, we have been working across the organization to design and implement a plan to provide signatures for all zip file types…

Read more →

Container and Kubernetes adoption brings the promise of faster application development and delivery at larger scales — however, it also brings with it new security challenges. Protecting cloud-native applications can require significant changes in how organizations approach IT security. They…

Read more →

Red Hat Insights, which is included with Red Hat subscriptions, analyzes platforms and applications to help enterprises manage hybrid cloud environments. Insights uses predictive analytics and deep domain expertise to reduce complex operational tasks from hours to minutes, including identifying…

Read more →

Red Hat Insights, which is included with Red Hat subscriptions, analyzes platforms and applications to help enterprises manage hybrid cloud environments. Insights uses predictive analytics and deep domain expertise to reduce complex operational tasks from hours to minutes, including identifying…

Read more →

Red Hat Insights, which is included with Red Hat subscriptions, analyzes platforms and applications to help enterprises manage hybrid cloud environments. Insights uses predictive analytics and deep domain expertise to reduce complex operational tasks from hours to minutes, including identifying…

Read more →

Red Hat leads the tech industry’s cutting edge practices for the resolution of cybersecurity issues. Red Hat does this by providing relevant and accessible information and enabling the larger community to make well-informed decisions about security issues. This article has…

Read more →

Confidential Containers (CoCo) is a new sandbox project of the Cloud Native Computing Foundation (CNCF) that enables cloud-native confidential computing by taking advantage of a variety of hardware platforms and technologies. This article has been indexed from Red Hat Security…

Read more →

The Red Hat Enterprise Linux (RHEL) web console provides a web-based graphical interface for managing and monitoring systems. The web console can be used to complete a wide variety of tasks, such as managing storage, users, the firewall, monitoring performance…

Read more →

The Red Hat Shares newsletter helps IT leaders navigate the complicated world of IT―the open source way. This article has been indexed from Red Hat Security Read the original article: Red Hat Shares ― Edge computing: Security

Read more →

The Red Hat Enterprise Linux (RHEL) web console provides a web-based graphical interface for managing and monitoring systems. The web console can be used to complete a wide variety of tasks, such as managing storage, users, the firewall, monitoring performance…

Read more →

Railway systems have been around for centuries and serve as a highly cost-effective method for freight delivery and rail is growing in popularity among passengers. Rail systems with a significant legacy operational technology (OT) footprint are just embarking on the…

Read more →

The Red Hat Shares newsletter helps IT leaders navigate the complicated world of IT―the open source way. This article has been indexed from Red Hat Security Read the original article: Red Hat Shares ― Edge computing: Security

Read more →

Railway systems have been around for centuries and serve as a highly cost-effective method for freight delivery and rail is growing in popularity among passengers. Rail systems with a significant legacy operational technology (OT) footprint are just embarking on the…

Read more →

Red Hat Hybrid Cloud Console uses role-based access controls (RBAC) to restrict network access to services and resources based on user roles.  Role permissions are either assigned or inherited through a role hierarchy and can be as broad—or granular—as needed,…

Read more →

There are two primary methods available to remotely manage and administer a Red Hat Enterprise Linux (RHEL) system: the command line interface over an SSH connection and the RHEL web console. This article has been indexed from Red Hat Security…

Read more →

In this post I will go through how you can integrate and send policy alert notifications from Red Hat Advanced Cluster Security for Kubernetes (RHACS) to ServiceNow.  This article has been indexed from Red Hat Security Read the original article:…

Read more →

Red Hat Hybrid Cloud Console uses role-based access controls (RBAC) to restrict network access to services and resources based on user roles.  Role permissions are either assigned or inherited through a role hierarchy and can be as broad—or granular—as needed,…

Read more →

There are two primary methods available to remotely manage and administer a Red Hat Enterprise Linux (RHEL) system: the command line interface over an SSH connection and the RHEL web console. This article has been indexed from Red Hat Security…

Read more →

As organizations adopt container-based ecosystems, the approach to continuous IT security and compliance must shift from traditional system security assessments to new methodologies that account for how cloud-based technologies operate. Containers enable agnosticism amongst cloud computing operating environments by packaging…

Read more →

For many, writing a computer program isn’t that hard—it simply requires a certain amount of structural and logical thinking and a clear understanding of the syntax of the language you are using. This article has been indexed from Red Hat…

Read more →

Can an IoT coffee maker leak company secrets? Where do you put the ‘S’ in ‘IoT’? Join Alison Naylor, Senior Manager for Information Security at Red Hat, in this episode of Security Detail as she discusses the importance of securing…

Read more →

When it comes to identifying potential security vulnerabilities in software, the technology industry has relied upon the Common Vulnerabilities and Exposure (CVE) system for more than two decades. Red Hat is a long-time contributor to this program, first helping the…

Read more →

The beta of Red Hat Insights malware detection service is now available. This article has been indexed from Red Hat Security Read the original article: Getting started with Red Hat Insights malware detection

Read more →

In this article, we explore what Red Hat Insights and Red Hat Satellite have to offer individually, and then we will look at how you can have a heightened experience of the two products with the use of Cloud Connector.…

Read more →

This article is the first in a two-part series. Here we take a step back and look at the evolving IT security risk landscape and how it is impacting organizations, after which we’ll look at a suggested automated compliance architecture.…

Read more →

With the uptick in software supply chain attacks over the last couple of years, we have harnessed a particular focus on software supply chain security within our Product Security organization. The Open Source Security Foundation (OpenSSF), in collaboration with several…

Read more →

Red Hat Product Security has been developing RapiDAST, a tool that can be used for security testing of products and services. DAST stands for dynamic application (or analysis) security testing. In this article, we introduce the tool and ideas that…

Read more →

In this article, I’ll go over some typical problems users may face with Fedora SHA-1 status (including some possible workarounds), and how you can update your infrastructure to use a more secure SHA-256. This article has been indexed from Red…

Read more →

At Red Hat, we recognise the importance of implementing security measures early in the software development life cycle (SDLC), as breaches are becoming more evident in today’s society. Our work in Red Hat Product Security is to help minimize the…

Read more →

There are a million ways for awful things to happen to your data and accounts. For example, someone could accidentally commit their AWS access keys publicly to GitHub, and attackers quickly run up $100,000 in charges mining cryptocurrency on expensive…

Read more →

Ravie Lakshmanan’s recent article CISA warns of active exploitation of ‘PwnKit’ Linux vulnerability in the wild articulates the vulnerability in Polkit (CVE-2021-4034) and recommends “to mitigate any potential risk of exposure to cyberattacks… that organizations prioritize timely remediation of the…

Read more →

The IT industry not only looked very different 20 years ago, product security looked very different as well. Open source software wasn’t mainstream and the majority of vendors had full control and secrecy over their product code. This article has…

Read more →

What are container image vulnerabilities? This article has been indexed from Red Hat Security Read the original article: Scanning container image vulnerabilities with Clair

Read more →

Red Hat Enterprise Linux 9 (RHEL 9) ships with OpenSSL 3.0, a core operating system (OS) library that has been in the making for quite a while. This was a long and involved process for a variety of reasons. This article…

Read more →

Red Hat Enterprise Linux 9 (RHEL 9) is the latest version of Red Hat’s flagship operating system, released at the Red Hat Summit in May 2022. New capabilities added to RHEL 9 help simplify how organizations manage security and compliance…

Read more →

This article has been indexed from Red Hat Security Red Hat Product Security is pleased to announce that a new security metadata offering, the Common Security Advisory Framework (CSAF), is now available in beta form. CSAF 2.0 is the successor…

Read more →

This article has been indexed from Red Hat Security Traditionally, when looking at a virtio device and its corresponding virtio driver, we assume the device is trusted by the driver. We do, however, need to protect the virtio device from…

Read more →

This article has been indexed from Red Hat Security What is post-quantum cryptography? A new type of computer is being developed that can break many of our existing cryptographic algorithms. As a result, we need to develop new algorithms that…

Read more →

This article has been indexed from Red Hat Security Organizations across the globe continue to focus on managing security and risk compliance as the threat landscape evolves. Funding for IT security remains the top priority for many enterprises, as reported…

Read more →

This article has been indexed from Red Hat Security What are Kubernetes Operators? Read the original article: Kubernetes Operators: good security practices

Read more →

This article has been indexed from Red Hat Security Fedora 36 and Red Hat Enterprise Linux 9 (RHEL 9) are out, and both ship with OpenSSL 3 that has tighter security defaults and a brand new “provider” architecture. Read the…

Read more →

This article has been indexed from Red Hat Security Security considerations are even more important today than they were in the past. Every day we discover new vulnerabilities that impact our computer systems, and every day our computer systems become…

Read more →

This article has been indexed from Red Hat Security As a Technical Account Manager (TAM) one of the best parts of the job is the regular contact with our customers, talking to them frequently and helping them solve interesting problems.…

Read more →

This article has been indexed from Red Hat Security In an earlier blog I walked you through the process of using the Red Hat Enterprise Linux (RHEL) and Red Hat Insights Compliance service to: Create compliance policies Read the original…

Read more →

This article has been indexed from Red Hat Security Automation can help increase efficiency, save time and improve consistency, which is why Red Hat Enterprise Linux (RHEL) includes features that help automate many tasks. RHEL System Roles are a collection…

Read more →

This article has been indexed from Red Hat Security Kubernetes is the de facto standard when it comes to container orchestration and management at scale, but adoption is only one piece of Kubernetes strategy. Security plays a huge role in…

Read more →

This article has been indexed from Red Hat Security Red Hat is excited to announce that Red Hat Advanced Cluster Security for Kubernetes is now available as an open source project: StackRox. Read the original article: Red Hat releases open…

Read more →

This article has been indexed from Red Hat Security Kubernetes is the de facto standard when it comes to container orchestration and management at scale, but adoption is only one piece of Kubernetes strategy. Security plays a huge role in…

Read more →

This article has been indexed from Red Hat Security Red Hat is excited to announce that Red Hat Advanced Cluster Security for Kubernetes is now available as an open source project: StackRox. Read the original article: Red Hat releases open…

Read more →

This article has been indexed from Red Hat Security Are your edge computing systems secure? A simple question with a potentially complicated answer. This is because many engineering teams combine Red Hat Enterprise Linux with decoupled applications thanks to containerization…

Read more →

This article has been indexed from Red Hat Security After extensive testing on RHEL 8.2, 8.4, 8.6 and 9 using the SAP HANA validation test suite, Red Hat’s engineering team concluded that SELinux can run in Enforcing mode with minimal…

Read more →

This article has been indexed from Red Hat Security Supply chain disruptions, intellectual property theft and the rising cost of data breaches are among the top reasons for a drastic increase in global focus on cybersecurity compliance.  Read the original…

Read more →

This article has been indexed from Red Hat Security A recent survey provides insight into how 5G networks may evolve as operators and the wider mobile ecosystem continue to invest in 5G technology. This article discusses some of the findings…

Read more →

This article has been indexed from Red Hat Security Many organizations are apprehensive about the security of edge deployments. As data becomes more and more valuable, security threats create increasingly serious concerns. No organization wants to be in the news…

Read more →

This article has been indexed from Red Hat Security How do you determine if your Red Hat Enterprise Linux (RHEL) infrastructure is compliant with security standards? This post will walk through how Red Hat Insights can help you apply security…

Read more →

This article has been indexed from Red Hat Security No matter where you are in your hybrid cloud journey, security is a primary concern. In this post, we’ll look at tips and products that can help with deploying a security-focused…

Read more →

This article has been indexed from Red Hat Security We surveyed nearly 1,300 IT decision makers at medium to large enterprises worldwide about the state of enterprise open source. Learn more about some of the key takeaways. Read the original…

Read more →

This article has been indexed from Red Hat Security Users are perhaps more vulnerable to cybersecurity attacks than ever before. The answer to this increased risk? A self-sovereign identity (SSI)—especially for the financial services sector. Learn more. Read the original…

Read more →

This article has been indexed from Red Hat Security Consuming enterprise open source through a vendor like Red Hat meets the goal of minimizing the risk of using software in general, while affording the many benefits that only open source…

Read more →

This article has been indexed from Red Hat Security Regulatory requirements and consumer privacy concerns drive financial institutions to consider more privacy-friendly policies and development considerations in the new world of open banking. What steps can software developers take to…

Read more →

This article has been indexed from Red Hat Security If you are using Red Hat Enterprise Linux (RHEL), you can use Red Hat Insights to find out what systems are exposed, and to what extent. See how to find and…

Read more →

This article has been indexed from Red Hat Security You can use a built-in tool to get update the kernel on RHEL systems with no downtime. That tool is live kernel patching (kpatch). Kpatch has been a part of our…

Read more →

This article has been indexed from Red Hat Security The Security Data and Pyxis APIs are powerful services that can be used to gather useful security-related information programmatically. In this post, get a look at how to collect security data…

Read more →

This article has been indexed from Red Hat Security The Security Data and Pyxis APIs are powerful services that can be used to gather useful security-related information programmatically. In this post, get a look at how to collect security data…

Read more →

This article has been indexed from Red Hat Security Red Hat Product Security is committed to providing tools and security data to help you better understand security threats. In this post, we cover how the Security Data API can be…

Read more →

This article has been indexed from Red Hat Security From its inception in 2001, the Product Security team has been focused on providing Red Hat’s customers value in a wide-variety of ways. Let’s take a look at how Product Security…

Read more →

This article has been indexed from Red Hat Security Protecting sensitive data is vital in healthcare due to the nature (and value) of personal health information. In this post, we outline some strategies for dealing with four high priority types…

Read more →

This article has been indexed from Red Hat Security From its inception in 2001, the Product Security team has been focused on providing Red Hat’s customers value in a wide-variety of ways. Let’s take a look at how Product Security…

Read more →

This article has been indexed from Red Hat Security A new U.S government directive requires federal agencies to patch known Common Vulnerabilities and Exposures (CVEs). Learn how Red Hat Insights can help you more easily triage and manage CVEs that…

Read more →

This article has been indexed from Red Hat Security Veeam recently released a new feature called Immutable Repository, which uses Linux as the backup target. In this post, we validate this setup by testing it with Red Hat Enterprise Linux.…

Read more →

This article has been indexed from Red Hat Security Maintaining security for Linux systems can be a complex task, especially as your number of servers and applications increases. In this post, we show you how to harden your Linux systems…

Read more →

This article has been indexed from Red Hat Security Sysadmins trying to keep watch over tens, hundreds, or thousands of systems need tools to help keep them in compliance with policies and security standards. In this post, we’ll look at…

Read more →

This article has been indexed from Red Hat Security Results from Red Hat’s annual Global Tech Outlook survey are in, and as in years past we explore what the data reveals about the current state of cloud and organizations’ cloud…

Read more →

This article has been indexed from Red Hat Security DSE wants to make sure that their DevSecOps vision is working across the company – to demonstrate, quantifiably, that the changes were having the desired effect. Let’s take a look at…

Read more →

This article has been indexed from Red Hat Security Liz Rice, Chief Open Source Officer at Isovalent, has a few thoughts on core DevSecOps technologies that can help address these concerns. She joins Red Hat Chief Technology Officer Chris Wright…

Read more →

This article has been indexed from Red Hat Security Host firewalls play a key role in a defense-in-depth strategy, and they often close gaps in critical network infrastructure. This post covers some potential scenarios where a host firewall could reduce…

Read more →

This article has been indexed from Red Hat Security Technologies come and go, but one concept has remained at the forefront of IT conversations for decades: Security. While security remains a perennial top priority for IT departments, what it means…

Read more →

This article has been indexed from Red Hat Security When it comes to adopting DevSecOps, organizations sometimes focus on overarching goals like improving business agility or digital transformation. Such a broad scope can make DevSecOps adoption difficult. Instead, companies might…

Read more →

This article has been indexed from Red Hat Security DevSecOps is an approach to software development and deployment that takes full advantage of the agility and responsiveness of DevOps, but also makes security a shared responsibility that is integrated into…

Read more →

This article has been indexed from Red Hat Security Runtime analysis consists of security methods to help maintain cluster security hygiene. These methods help you enforce policies, identify behavioral risk, and provide mitigation for running workloads. Read the original article:…

Read more →

This article has been indexed from Red Hat Security This is one story of how Red Hat Insights created a new recommendation to address a high impact vulnerability that might affect Red Hat customers. Red Hat Insights does this regularly…

Read more →

This article has been indexed from Red Hat Security This post explores implementing DevSecOps principles to improve Kubernetes security analysis and remediation across the full development life cycle. Read the original article: Applying DevSecOps practices to Kubernetes: security analysis and…

Read more →

This article has been indexed from Red Hat Security Network Bound Disk Encryption (NBDE) can help organizations improve security by removing barriers to disk encryption. In this post learn how to use NBDE System Roles to implement high availability and…

Read more →

This article has been indexed from Red Hat Security We’ve discussed ways for you to build a DevSecOps culture and start introducing DevSecOps practices to your development workflows. This post expands on this topic and explores how you could apply…

Read more →

This article has been indexed from Red Hat Security The concept of distroless is a popular idea in the world of containers – but its also poorly understood. Read about some common fallacies of distroless as well as some of…

Read more →

This article has been indexed from Red Hat Security Network controls and segmentation methods allow you to control, segregate, and visualize Kubernetes traffic. These methods help you isolate tenants and better secure communications flows between containerized applications and microservices.   …

Read more →