Parasoft announces the opening of its new office in Northeast Ohio.
ThreatX Adds New Capabilities to Runtime API and Application Protection
November 13, 2023
ThreatX announced new capabilities for its Runtime API and Application Protection (RAAP) solution.
ThreatX RAAP helps CISOs and security teams extend APIs and app protection to containerized environments. ThreatX delivers this capability through a unified solution that protects against runtime threats originating at the network edge and within cloud workloads.
The new ThreatX capabilities deliver comprehensive visibility into and protection of API and apps – from the edge to runtime.
The ThreatX RAAP solution is designed to protect against runtime threats within Kubernetes (K8) environments. Leveraging Extended Berkeley Packet Filter (eBPF) technology, ThreatX RAAP positions security teams to discover unknown APIs; detect and protect against zero days; and track suspicious east/west traffic, insider threats, and malicious OS-level commands. In addition, ThreatX RAAP provides the ability to alert Security Operations or block these attacks in real-time.
New capabilities of the ThreatX RAAP include:
- Edge-to-Runtime Event Correlation: ThreatX now enables customers to correlate network edge transactions (i.e., requests and responses) with runtime events. This enables security analysts, SOC teams, and threat hunters to quickly identify the origin of the threat (e.g., north/south, east/west), understand potentially malicious commands, and determine appropriate next steps.
- Real-Time Blocking of Network-Based Runtime Attacks: ThreatX delivers the ability to block malicious traffic and high-risk runtime attacks in real-time. For security teams, this real-time blocking option provides a powerful capability to protect their digital assets.
- Unified Edge/Runtime Risk Visualization: ThreatX delivers a unified view of risk to APIs and apps – from the edge to runtime. Within the platform, executives can gain a high-level view of their security posture, while analysts and threat hunters can go deeper – tracking threat activity over time and pinpointing the precise moment an attack was executed, for example.
“Business’ digital transformation initiatives have fundamentally changed the way developers build, deploy, and maintain applications. DevOps moves quickly, and security teams struggle to maintain both visibility and protection across legacy and cloud-native environments,” said Bret Settle, Chief Product Officer at ThreatX. "We are excited to continue advancing the ThreatX platform, providing customers a unified solution to protect APIs and applications from the network edge to deep within Linux runtime environments.”
The ThreatX RAAP solution is easily deployed as a sidecar container within a Kubernetes environment. ThreatX RAAP inspects network traffic anywhere within your cloud workloads without requiring an in-line deployment. ThreatX RAAP may be deployed as a standalone solution or coupled with the ThreatX API & Application Protection – Edge solution.
Industry News
May 02, 2024
Postman released v11, a significant update that speeds up development by reducing collaboration friction on APIs.
May 02, 2024
Sysdig announced the launch of the company’s Runtime Insights Partner Ecosystem, recognizing the leading security solutions that combine with Sysdig to help customers prioritize and respond to critical security risks.
May 02, 2024
Nokod Security announced the general availability of the Nokod Security Platform.
May 02, 2024
Drata has acquired oak9, a cloud native security platform, and released a new capability in beta to seamlessly bring continuous compliance into the software development lifecycle.
May 01, 2024
Amazon Web Services (AWS) announced the general availability of Amazon Q, a generative artificial intelligence (AI)-powered assistant for accelerating software development and leveraging companies’ internal data.
May 01, 2024
Red Hat announced the general availability of Red Hat Enterprise Linux 9.4, the latest version of the enterprise Linux platform.
May 01, 2024
ActiveState unveiled Get Current, Stay Current (GCSC) – a continuous code refactoring service that deals with breaking changes so enterprises can stay current with the pace of open source.
May 01, 2024
Lineaje released Open-Source Manager (OSM), a solution to bring transparency to open-source software components in applications and proactively manage and mitigate associated risks.
May 01, 2024
Synopsys announced the availability of Polaris Assist, an AI-powered application security assistant on the Synopsys Polaris Software Integrity Platform®.
April 30, 2024
Backslash Security announced the findings of its GPT-4 developer simulation exercise, designed and conducted by the Backslash Research Team, to identify security issues associated with LLM-generated code. The Backslash platform offers several core capabilities that address growing security concerns around AI-generated code, including open source code reachability analysis and phantom package visibility capabilities.
April 30, 2024
Azul announced that Azul Intelligence Cloud, Azul’s cloud analytics solution -- which provides actionable intelligence from production Java runtime data to dramatically boost developer productivity -- now supports Oracle JDK and any OpenJDK-based JVM (Java Virtual Machine) from any vendor or distribution.
April 30, 2024
F5 announced new security offerings: F5 Distributed Cloud Services Web Application Scanning, BIG-IP Next Web Application Firewall (WAF), and NGINX App Protect for open source deployments.
April 29, 2024
Code Intelligence announced a new feature to CI Sense, a scalable fuzzing platform for continuous testing.
April 29, 2024
WSO2 is adding new capabilities for WSO2 API Manager, WSO2 API Platform for Kubernetes (WSO2 APK), and WSO2 Micro Integrator.
