Posts by

Bringing Your A-Game: Availability for Security People
January 26, 2021
The security industry tends to focus on the protection of sensitive data, forgetting that availability falls under the classic C.I.A. triad. This is a mistake, and an especially egregious one considering the rise of the service delivery economy. This post is intended as an overview of why infosec teams stand to substantially benefit from rediscovering […]
Put Us In Coach – Cloud Security is a Team Sport
November 20, 2020
Recently Fernando Montenegro of 451 Research, part of S&P Global Market Intelligence, released a new thought leadership report, “Cloud Security is a Team Sport,”* (*Login required) that breaks down the need for collaboration and teamwork when tackling cloud security in two key areas: Within the vendor community, highlighting the need for collaboration between cloud service […]
Q&A: Secure Cloud Migration During a Crisis
September 24, 2020
Back in July, Capsule8’s Chief Product Officer, Rob Harrison, chatted with guest speaker Andras Cser, vice president and principal analyst at Forrester Research, about how security considerations for a cloud migration have changed over the past few months and how future trends change risk when adopting accelerating strategies. The evolving technology landscape can already make […]
EDR for Linux: Detection and Response in Linux Environments
February 5, 2020
The 3 pillars every solution needs to protect critical Linux production environments Despite the steady ascent of Linux to the top of the production stack, security has often been an afterthought. That’s right—the OS that runs 54% of public cloud applications and 68% of servers has been getting short shrift when it comes to security.  […]
Kelly Shortridge - Photo credit: @montaelkins
A Cloudy Forecast for ICS: Recap of S4x20
January 30, 2020
Photo credit: @montaelkins – Kelly Shortridge Keynote at S4x20 Last week, I keynoted S4x20, the biggest industrial control systems (ICS) security conference in the world, and was able to catch quite a few talks, too. While it took place in sunny Miami Beach, my highlights from the conference suggest a far cloudier outlook. Specifically, there […]
Takeaways from Art into Science
January 22, 2020
What do you get when you take a security conference and pare back its typical formula of swag-laden vendor tables, high-concept lighting that promises to be “an experience”, bougie parties with LED-lit stemware and a surplus of decibels — not to mention all of the offsec-focused talks? You find a group of dedicated defenders who, […]
An Infosec Lens on the 2019 State of DevOps Report: What It Means for Us
October 28, 2019
Understanding DevOps trends is essential for infosec professionals. Before you angrily close the tab because you are tired of lectures about the need for infosec to work with DevOps, consider whether the idea of a job focused on strategic, innovative work rather than firefighting and gatekeeping is appealing. If so, then these trends matter for […]
Summercon 2019 Fellowship
The SummerCon Fellowship
December 20, 2018
One of the ways Capsule8 came to be was through the community built around cool people doing cool research. That’s how most of us got our start, and we believe it’s important to help others do the same. We’re psyched to announce that Capsule8, along with Trail of Bits, are funding the SummerCon Fellowship. Summercon […]
cloud native security summit
Seven Key Takeaways from the Cloud-Native Security Summit
September 20, 2018
Earlier this week we wrapped up very first Cloud-Native Security Summit, an exclusive event co-hosted by Capsule 8, Duo Security, and Signal Sciences, designed to tackle all things cloud-native security. Together in one room for a day, 140 security professionals discussed some of the most pressing issues they are facing in their organizations such as […]
Takeaways from USA Black Hat conference 2018
Black Hat Takeaways 2018
August 24, 2018
Another year at Black Hat has come and gone, with attendees  from around the world coming together to share and discuss their ideas, research, and discoveries. Did you attend Black Hat this year? If not, don’t worry. We’ve put together the highlights of this year’s conference. Here are our top takeaways from Black Hat 2018: […]
New Research: Zero Days Cannot Be Contained
New Research: Zero Days Cannot Be Contained
February 28, 2018
The term “zero-day” can cause a normal day at any company to go from zero to sixty right quick. Every security person knows you’re probably vulnerable somewhere within your infrastructure, and finding everywhere that is can be nearly impossible.  That’s not just speculation according to a new study we sponsored with ESG Research. In fact, […]
Podcast: Dino Dai Zovi on Risky Business
Podcast: Dino Dai Zovi on Risky Business
December 4, 2017
As companies look to move workloads into this new cloud-native world of containers and microservices, one issue that is driving anxiety is the lack of visibility into areas where there is uncertainty.  Without the telemetry and visibility people are used to with their on-premise deployments, it’s difficult making the case that this next-gen environment is […]