It helps businesses to integrate security tools into the development process to minimize the risk of container compromise and supply-chain attacks, without impacting development speeds. Kaspersky Hybrid Cloud Security reconciles the two worlds – DevOps and IT security. A cybersecurity solution should also not affect an application’s time to market or the overall flexible approach to IT that DevOps is accustomed to, such as being able to scale cloud workloads up and down or use different open source tools.
Kaspersky embedded alliance partners software#
Protection from such supply-chain attacks is essential for software developers, although it can be hard to find an effective security tool because validating the integrity of fast-changing development environments on-demand is often technically challenging. Supply-chain attacks also strike open source repositories, such as when Docker Hub found 17 backdoored container images, or when RubyGems caused users to download 725 malicious packages almost 100,000 times. For example, this method was used in a ShadowPad attack where a backdoor was embedded into a popular legitimate business software product’s code library. Supply-chain attacks that affect software development, such as when a malicious piece of code is added to legitimate software, are effective tools for cybercriminals. Also, to support businesses use of a wide range of public cloud platforms, Kaspersky Hybrid Cloud Security adds protection for Google Cloud.
![kaspersky embedded alliance partners kaspersky embedded alliance partners](https://cdn.autoconnectedcar.com/wp-content/uploads/2017/06/AVLtest.jpg)
![kaspersky embedded alliance partners kaspersky embedded alliance partners](https://www.congatec.com/fileadmin/_processed_/5/a/csm_COPR1901-congatec-Fortec-Sales-Partnership_f58c139c13.jpg)
![kaspersky embedded alliance partners kaspersky embedded alliance partners](https://www.edge-ai-vision.com/wp-content/uploads/2020/01/logo_visioncomponents-2048x1024.png)
The product has been updated to enable protection for containers and has added container, image and repository scanning capabilities for integration with continuous integration and delivery pipelines (CI/CD).