Top 5 Atomicorp Blog Posts of 2017 – Extending Linux Security to the Cloud, Containers, OSSEC and IoT
2017 brought even more focus on Linux platforms with the continued rise of cloud, containers, OSSEC and IoT adoption. The challenge confronting many IT departments is that the old security models and solutions don’t quite work in these new computing environments. Atomicorp stepped into this gap and introduced several new security solutions to help companies proactively defend assets in these environments against cyber attacks.
We introduced a hardened Linux kernel to natively protect Docker containers and IoT devices from entire categories of attacks. We also introduced a new GUI and security protections for OSSEC deployments. And, Atomicorp rolled out additional free and advanced WAF rules for Modsecurity while also updating our HIDS / HIPS solution, Atomic Secured Linux (ASL), that is perfectly suited to protect servers in cloud installations. Plesk also announced new ASL and WAF products from Atomicorp that now protect thousands of servers. Read the top five blog posts of 2017 to learn more about what else we were up to in 2017.
There are three key trends in computing: cloud, containers and IoT. What do they all have in common? Linux. Linux is a tremendous OS. It is stable, flexible and robust. It is also free. That has been a killer combination in terms of rapid Linux adoption. The OS was a novelty in the business world more than twenty years ago but now Linux is just about everywhere and in nearly everything. However, the increased usage has made Linux a more common target for cyber attacks. To read more about making your Linux installation secure, click here.
Atomicorp founders Mike and Scott Shinn were also co-founders of Plesk. When they founded Atomicorp, they also had Plesk in mind. This year we announced that our full stack of security defenses are also available for Plesk user as extensions. That means they are certified to support Plesk installations and come with out-of-the-box integration. To learn more about the three levels of protection Atomicorp offers to Plesk users, click here.
It’s kind of strange to suggest adding security to OSSEC. The OSSEC project has security in its very name. However, while OSSEC does many things well, it doesn’t actually defend itself from attacks. This leads many people to literally have a false sense of security in their OSSEC deployment. That is why Atomicorp ships an OSSEC package that includes additional security enhancements. To learn more, click here.
Docker containers have revolutionized DevOps. However, their rapid adoption has outpaced security practices. Very few Docker installations have any security measures in place at all. Traditional VPS and network security practices don’t protect container environments. There are two methods to securing containers. In this video blog, Atomicorp CTO Scott Shinn outlines how the first step in Docker security is to harden the kernel. View here.
Equifax was hacked because, according to its former CEO, one person failed to install a patch on a web server. So, the total compromise of nearly every American’s financial data occurred because one person missed installing one patch on one web server. But neglect around patching wasn’t the core problem. An over-reliance on patching as a defensive security strategy is the real culprit. To read more about why patching isn’t a strategy and what you should focus on instead, click here.