Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

10/8/2019
05:35 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

vArmour Announces Version 5 of its Application Controller with SDK and Security Graph Technology

Application relationships put on center spotlight to help organizations intelligently reduce risk.

LOS ALTOS, Calif., Oct. 08, 2019 (GLOBE NEWSWIRE) -- vArmour, the leader in centralized risk and control, today announced version 5 of the vArmour Application Controller, introducing its Security Graph technology and SDK to help cloud and security teams address blast radius risks inherent in multi-cloud environments. By streaming cloud, network, and agent information into the Security Graph, enterprises now have a centralized understanding of application relationships across their multi-cloud infrastructure, enabling centralized risk and policy management that is simple, accurate, and secure.

Enterprises today have made significant investments in their IT and security infrastructure, from cloud platforms (including public, private, SDN, and containers), to agents doing patching, to EDR solutions, to vulnerability tools, to IAM solutions. However, for overall security management, they are siloed when it comes to understanding and controlling risks. As an API-driven solution, vArmour Application Controller enables enterprises to unlock more value out of the investments they’ve already made.

“With environments becoming increasingly heterogeneous, relationships have become the new perimeter,” said John Grady, Analyst at Enterprise Research Group. “Leveraging the rich context that can be gleaned from telemetry and the native controls of existing platforms across an enterprise is an innovative and effective approach to centralizing risk and policy management.”

Pre-cloud security technologies are blind to relationships and simply inadequate to deal with modern sophisticated attacks. The vArmour Application Controller is not only powerful in helping enterprises gain a clearer picture of relationships and how workloads are interconnected, but is simple to install.

“vArmour’s Version 5 makes it easy to deploy and immediately realize value,” said Keith Stewart, SVP of Product and Strategy at vArmour. “Just last week we installed in a customer’s Azure environment and they were blown away by what was discovered and how quickly we did it. Within minutes of installation, we discovered and visualized thousands of workloads and over tens of thousands of relationships, exposing blindspots to security coverage they were unaware of.”

vArmour Application Controller Version 5 is designed for anyone and everyone that puts applications in clouds. The solution includes:

  • vArmour Security Graph technology with a comprehensive API to understand, visualize, and query the interrelationships of workloads and applications to ultimately minimize their risk. Supports 400,000 workloads.
  • The vArmour SDK to integrate diverse IT and security platforms into the vArmour Application Controller for centralized risk and policy management
  • Brand new application visualization that makes it easy for security and applications owners to discover application relationship risks

vArmour Application Controller Version 5 is available now for trial from either the vArmour website or the Azure Marketplace.

About vArmour
vArmour is the leader in centralized risk and control. Hundreds of companies worldwide rely on the vArmour Application Controller to consistently and effectively apply security controls across hybrid clouds, reducing the attack surface and maintaining continuous compliance. Based in Los Altos, CA, the company was founded in 2011 and is backed by top investors including Highland Capital Partners, AllegisCyber, Redline Capital, Citi Ventures, and Telstra. Learn more at www.varmour.com.

Media Contact:
Mariah Gauthier
(951) 314-0760
[email protected]

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
44% of Security Threats Start in the Cloud
Kelly Sheridan, Staff Editor, Dark Reading,  2/19/2020
Zero-Factor Authentication: Owning Our Data
Nick Selby, Chief Security Officer at Paxos Trust Company,  2/19/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-5244
PUBLISHED: 2020-02-24
In BuddyPress before 5.1.2, requests to a certain REST API endpoint can result in private user data getting exposed. Authentication is not needed. This has been patched in version 5.1.2.
CVE-2020-5245
PUBLISHED: 2020-02-24
Dropwizard-Validation before 1.3.19, and 2.0.2 may allow arbitrary code execution on the host system, with the privileges of the Dropwizard service account, by injecting arbitrary Java Expression Language expressions when using the self-validating feature. The issue has been fixed in dropwizard-vali...
CVE-2020-9369
PUBLISHED: 2020-02-24
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service (disk consumption from temporary files, and a flood of notifications to listmasters) via a series of requests with malformed parameters.
CVE-2019-10796
PUBLISHED: 2020-02-24
rpi through 0.0.3 allows execution of arbritary commands. The variable pinNumbver in function GPIO within src/lib/gpio.js is used as part of the arguement of exec function without any sanitization.
CVE-2019-10798
PUBLISHED: 2020-02-24
rdf-graph-array through 0.3.0-rc6 manipulation of JavaScript objects resutling in Prototype Pollution. The rdf.Graph.prototype.add method could be tricked into adding or modifying properties of Object.prototype.