London, UK – September 3, 2020 – Outpost24, a global leader and innovator in identifying and managing cyber security exposure, today announced it has released several new product features to help customers improve container security at the speed of agile DevOps. Gartner predicts “by 2022 more than 75% of global organizations will be running containerized applications in production, up from less than 30% today.” As developers embrace the flexibility, scalability and efficiency of containerization, organizations are faced with yet another set of new security challenges to detect vulnerabilities in base images and prevent container misconfigurations.
Recent industry news suggests Docker attacks are increasing, with container security falling significantly behind the rate of container deployments. Vulnerabilities in the container registries and misconfigurations can cause businesses money and issues further down the line, so Outpost24 is adding a container inspection capability to help busy DevOps teams shift left and automate container composition analysis early on, to ensure vulnerabilities disguised within Docker images are spotted and remediated before production.
However, it’s challenging to control this day-to-day as SecOps and DevOps are often sat in silos. With the launch of Container Inspection into our full stack security assessment, organizations can achieve greater DevSecOps integration and efficiency by building container security assessment directly into the SDLC for ease of adoption and monitoring. This way both SecOps and DevOps are made aware of the weaknesses in containers before it’s too late.
“Our customers are turning to containers for ease of deployment at an unprecedented rate” said Bob Egner, Head of Product at Outpost24 “but many are failing to correctly understand the risk of containerization and implement the necessary security controls to keep up. By adding container composition analysis capability to our cloud security configuration assessment tools, customers are able to harden the container host and the images within with greater confidence and drive DevOps efficiency”.
The Outpost24 product portfolio is the only full stack cyber security assessment on the market today. In addition to container inspection, other significant new product releases include:
- Outpost24 Network Security: Added multiple SMB support for NetSec customers to improve enterprise support for multiple Windows domains and enabling configuration for multiple sets of Windows domains within a single scan policy.
- Outpost24 Agents: Our Agents capability runs vulnerability scanning to support remote working and this has been extended to support Fedora Linux 32, Windows 10 and Debian 10.
- Outpost24 Portal: Enhancement to Portal UI with the addition of metrics and multiple dashboards to improve user experience.
- Outpost24 Cloudsec Inspect: We have added improved support for AWS regions, including GovCloud and Chinese AWS regions.
- Outpost24 Application Security: Our Appsec findings for classifications and relationships now extended to include CWE findings relating to specific OWASP Top 10 categories.
For more information about the full stack capabilities of Outpost24 check out outpost24.com and for existing customers wishing to add Container Inspection to their subscription please contact your Outpost24 account manager for more information.
Outpost24 is a leading cyber assessment company focused on enabling its customers to achieve maximum value from their evolving technology investments. By leveraging our full stack security insights to reduce attack surface for any architecture, Outpost24 customers continuously improve their security posture with the least effort. Over 2,000 customers in more than 40 countries around the world trust Outpost24 to assess their devices, networks, applications, cloud and container environments and report compliance status for government, industry sector, or internal regulations. Founded in 2001, Outpost24 serves leading organizations across a wide range of segments including financial and insurance, government, healthcare, retail, telecommunications, technology, and manufacturing.