Latest Blogs

Cloud Security Insights, Thoughts, and Ideas

3 Min Read
New PCI Standards for New Ways of Building Software

Tim Buntel

March 5, 2019

This post explains how the PCI Security Standards Council has introduced its new PCI Software Security Framework to align PCI with modern software ...

3 Min Read
How to Cut Through Vendor Claims & Marketing Hype When Evaluating New Security Tools

Nathan Cooprider

February 28, 2019

As we’ve pointed out in a couple of recent blog posts, Machine Learning (ML) has been billed as a savior for short-staffed security teams — a ...

2 Min Read
Scala Regex String Extraction

Alfredo Perez

February 26, 2019

Introduction — Joe Baker, Manager Software Engineering From time to time the Engineering, Operations, and Security groups at Threat Stack ...

4 Min Read
The Promise of Machine Learning vs. The Reality of Human Assisted Learning

Natalie Walsh

February 21, 2019

Machine Learning (ML) has been around in one form or another for a long time. Arthur Samuel, started working in the field in 1949 and coined the term ...

3 Min Read
Threat Stack Successfully Completes Type 2 SOC 2 Examination With Zero Exceptions — Again!

Lindsey Ullian

February 20, 2019

For the second year in a row Threat Stack has achieved Type 2 SOC 2 Compliance in Security and Availability with zero exceptions. We’re justifiably ...

5 Min Read
How to Identify Threats Within Your Docker Containers

Nathan Cooprider

February 19, 2019

Now is a good time to review Threat Stack’s Docker integration in the wake of the recent runc CVE. The headline reporting gets a little hyperbolic, ...

3 Min Read
The Difference Between Security Trick Plays and Security Fundamentals

Nathan Cooprider

February 14, 2019

I like watching great football plays on YouTube, but I especially like watching trick plays where players sell some sort of deception so their ...

2 Min Read
How to Defend Against the runC Container Vulnerability

Nathan Paulhus

February 13, 2019

Earlier this week security researchers Adam Iwaniuk and Borys Poplawski published details on a vulnerability in runC, the underlying container ...

5 Min Read
Transforming Alert Fatigue Into Proactive Security Management

John Shoenberger

February 12, 2019

In a recent study, 72% of CISOs stated that their teams are facing alert fatigue, while 82% of respondents to a Threat Stack survey indicated that ...

6 Min Read
Machine Learning, Signatures, Rules, & Behaviors — Tips on Navigating Modern Cloud Security Solutions

Mark Moore

February 6, 2019

Cloud security is one of the most rapidly changing technology landscapes out there. And naturally, the market for security tools is also constantly ...

16 Min Read
21 Developers & Docker Experts Reveal the Biggest Mistakes People Make When Switching to Docker Containers

John Shoenberger

February 6, 2019

Containerized environments are increasingly popular, and Docker remains the most popular container solution for developers. But the process of moving ...

3 Min Read
Leveraging Threat Stack’s Out-of-the-Box Rulesets and Single View for Managing Multiple AWS Accounts

Stephen Fitzgerald

January 30, 2019

Increasingly, AWS users are leveraging multiple accounts to manage their infrastructure. While doing so is a recommended best practice that enables ...

22 Min Read
50+ Best Cloud and Cloud Security Certifications

Alan Nakashian-Holsberg

January 25, 2019

The growth of cloud technology has been phenomenal over the past few years, and it doesn’t show any signs of stopping. Companies of all sizes ...

3 Min Read
AWS Security Readiness Checklist

Mark Moore

January 16, 2019

This AWS Security Readiness Checklist is intended to help organizations evaluate their applications and systems before deployment on AWS. This ...

23 Min Read
50 Great DevOps Tools You May Not Be Using

Mark Moore

January 11, 2019

DevOps is about seamless collaboration between Development and Operations, and you need to have the right tools in your environment to help make this ...

4 Min Read
Kubernetes Security Tips & Best Practices

John Shoenberger

January 8, 2019

Recently, there has been a significant upswing in the adoption of containerized environments. In light of this, we’ve written a number of posts ...

20 Min Read
The Best Cloud Security Conferences to Attend in 2019

Sarah Wills

January 4, 2019

For the latest info — take a look at Sarah Wills’ Best Cloud Security Conferences to Attend in 2020. Securing any cloud infrastructure is ...

4 Min Read
Docker Security Tips & Best Practices

John Shoenberger

January 3, 2019

Docker is a software platform that makes it easier to create, deploy, and run applications. Recently there has been a major surge in the adoption ...

3 Min Read
Threat Stack Continues 2018’s Momentum Into 2019

Brian Ahern

January 2, 2019

As we enter the first days of 2019, it’s a great time to look back at the tremendous momentum we built up at Threat Stack over the last year. We ...

19 Min Read
20 Developers and Kubernetes Experts Reveal the Biggest Mistakes People Make During the Transition to Kubernetes

Mike Broberg

December 20, 2018

Making the transition from virtual machines to containers is a complex process that can take some time, particularly for larger, more complex ...

5 Min Read
AWS Security Groups: What They Are and How to Get the Most Out of Them

John Shoenberger

December 19, 2018

AWS Security Groups are a flexible tool to help you secure your Amazon EC2 instances. AWS Security Groups are just one of several tools AWS offers to ...