Red Hat and Oracle announced the general availability of Red Hat OpenShift on Oracle Cloud Infrastructure (OCI) Compute Virtual Machines (VMs).
ThreatModeler announced a platform update designed to enhance user collaboration and security through new platform features, including CloudModeler simulations, automated threat modeling enhancements, and streamlined authentication processes.
The update also unlocks a new level of scale, enabling tens of thousands of users to concurrently manage hundreds of thousands of threat models that can be checked against 150+ compliance frameworks.
ThreatModeler now offers new CloudModeler capabilities that enable organizations of any size to ensure fast, efficient, and comprehensive threat modeling for the cloud. This includes the ability to edit cloud models to address evolving business needs, market trends or customer requirements. Cloud model editing enables organizations to respond more quickly to changes, experiment with different configurations and optimize their cloud models for performance, efficiency and user experience. Additionally, CloudModeler users can now create simulations for cloud service architectures such as AWS, Azure and more. This new capability enables organizations to better understand and mitigate potential threats before deploying their applications in a live environment.
ThreatModeler has also introduced a new overview panel to offer more intuitive filtering of threats based on status and risk levels, empowering organizations to identify and address high-priority security risks more effectively. This is especially beneficial for larger organizations that must maintain an up-to-date risk profile across multiple applications. The improved decision-making capabilities provided by the overview panel enable teams to collaborate efficiently and address critical security risks effectively.
Finally, ThreatModeler is boosting security and simplifying the user experience by enabling direct SSO login to significantly reduce the risk of unauthorized access.
"The features announced today extend our technical lead as we continue delivering the most advanced threat modeling capabilities on the market," said Archie Agarwal, Founder and CEO, ThreatModeler. "CloudModeler simulations and the compounding improvements to our automated threat modeling tools ensure that organizations of any size can confidently manage risk and compliance. The ThreatModeler community can count on our ongoing innovation as we continue our mission to secure infrastructure from code to cloud."
Industry News
The Software Engineering Institute at Carnegie Mellon University announced the release of a tool to give a comprehensive visualization of the complete DevSecOps pipeline.
Synopsys has entered into a definitive agreement with Clearlake Capital Group, L.P. and Francisco Partners.
Postman released v11, a significant update that speeds up development by reducing collaboration friction on APIs.
Sysdig announced the launch of the company’s Runtime Insights Partner Ecosystem, recognizing the leading security solutions that combine with Sysdig to help customers prioritize and respond to critical security risks.
Nokod Security announced the general availability of the Nokod Security Platform.
Drata has acquired oak9, a cloud native security platform, and released a new capability in beta to seamlessly bring continuous compliance into the software development lifecycle.
Amazon Web Services (AWS) announced the general availability of Amazon Q, a generative artificial intelligence (AI)-powered assistant for accelerating software development and leveraging companies’ internal data.
Red Hat announced the general availability of Red Hat Enterprise Linux 9.4, the latest version of the enterprise Linux platform.
ActiveState unveiled Get Current, Stay Current (GCSC) – a continuous code refactoring service that deals with breaking changes so enterprises can stay current with the pace of open source.
Lineaje released Open-Source Manager (OSM), a solution to bring transparency to open-source software components in applications and proactively manage and mitigate associated risks.
Synopsys announced the availability of Polaris Assist, an AI-powered application security assistant on the Synopsys Polaris Software Integrity Platform®.
Backslash Security announced the findings of its GPT-4 developer simulation exercise, designed and conducted by the Backslash Research Team, to identify security issues associated with LLM-generated code. The Backslash platform offers several core capabilities that address growing security concerns around AI-generated code, including open source code reachability analysis and phantom package visibility capabilities.
Azul announced that Azul Intelligence Cloud, Azul’s cloud analytics solution -- which provides actionable intelligence from production Java runtime data to dramatically boost developer productivity -- now supports Oracle JDK and any OpenJDK-based JVM (Java Virtual Machine) from any vendor or distribution.