Mirantis announced Mirantis Kubernetes Engine (MKE) 4, the latest evolution in its long-established product line that sets the standard for secure enterprise Kubernetes.
Horizon3.ai Launches NodeZero Kubernetes Pentesting
November 13, 2024
Horizon3.ai announced the release of NodeZero™ Kubernetes Pentesting, a new capability available to all NodeZero users.
Designed to deploy directly within Kubernetes clusters, this solution equips organizations with the unique ability to identify and exploit vulnerabilities from an attacker’s perspective, uncovering weaknesses that could jeopardize entire infrastructures.
NodeZero’s offensive approach prioritizes real-time security testing at the runtime level, revealing the “blast radius” attackers could achieve by chaining Kubernetes-specific vulnerabilities with cloud and on-premises infrastructure weaknesses.
"With Kubernetes operating as essential infrastructure, security teams must defend it as rigorously as any core system,” said Snehal Antani, CEO and Co-Founder of Horizon3.ai. “NodeZero Kubernetes Pentesting goes beyond surface checks—showing exactly how attackers can exploit weaknesses in real time. This is about putting organizations in a ‘wartime’ stance, enabling them to see the true paths of attack and proactively harden their defenses against evolving threats."
NodeZero Kubernetes Pentesting differentiates itself through advanced runtime security testing and ease of deployment, allowing organizations to achieve the continuous security assurance demanded by today’s threat landscape. Unlike traditional security tools focused on compliance or control plane analysis, NodeZero tests in real time, uncovering vulnerabilities like container escapes and RBAC misconfigurations that attackers exploit to move laterally, escalate privileges, and compromise underlying infrastructures.
The release underscores a shift in cybersecurity toward offensive-based assessments that employ adversarial techniques. Traditional compliance-driven assessments often miss critical gaps that attackers could exploit, leaving organizations exposed. With NodeZero’s use of real-world tactics, techniques, and procedures (TTPs) that mimic attacker behavior within Kubernetes environments, security teams can prioritize the most pressing threats and address exploitable vulnerabilities before they become gateways for adversaries.
Designed for any Kubernetes distribution, including EKS, GKE, and AKS, NodeZero’s pentesting capabilities provide advanced protection across both cloud and on-premises clusters. This solution underscores Horizon3.ai’s commitment to proactive, high-impact cybersecurity innovation, helping organizations navigate and secure the complexities of Kubernetes at scale.
Industry News
November 13, 2024
Cequence Security announced the launch of its new API Security Assessment Services.
November 13, 2024
Pulumi announced improvements including major updates to the EKS provider supporting Amazon Linux 2023 and Security Groups for pods, the release of Pulumi Kubernetes Operator 2.0 with dedicated workspace pods, Pulumi ESC integration with External Secrets Operator, and a new Kubernetes-native deployment agent for enhanced security and scalability.
November 13, 2024
Loft Labs announced the public beta of vCluster Cloud, a managed solution that simplifies and reduces the costs of Kubernetes clusters.
November 13, 2024
DevZero announced DXI (Developer Experience Index), an initiative aimed at transforming developer productivity by unifying engineering throughput and operational metrics.
November 13, 2024
Horizon3.ai announced the release of NodeZero™ Kubernetes Pentesting, a new capability available to all NodeZero users.
November 13, 2024
The CNCF Technical Oversight Committee (TOC) has voted to accept wasmCloud as a CNCF incubating project.
November 12, 2024
The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the graduation of Dapr.
November 12, 2024
NetApp announced an expanded collaboration with Red Hat to offer new solutions to streamline and accelerate enterprise application development and management in virtual environments.
November 12, 2024
Akamai Technologies announced the Akamai App Platform, a ready-to-run solution that makes it easy to deploy, manage, and scale highly distributed applications.
November 12, 2024
Snyk has acquired Probely, a modern Dynamic Application Security Testing (DAST) provider based in Porto, Portugal, with coverage of API security testing and web applications.
November 07, 2024
Broadcom announced the general availability of VMware Tanzu Platform 10 that establishes a new layer of abstraction across Cloud Foundry infrastructure foundations to make it easier, faster, and less expensive to bring new applications, including GenAI applications, to production.
November 07, 2024
Tricentis announced the expansion of its test management and analytics platform, Tricentis qTest, with the launch of Tricentis qTest Copilot.
November 07, 2024
Redgate is introducing two new machine learning (ML) and artificial intelligence (AI) powered capabilities in its test data management and database monitoring solutions.
November 07, 2024
Upbound announced significant advancements to its platform, targeting enterprises building self-service cloud environments for their developers and machine learning engineers.
