Hyper-Converged Infrastructure, Data Storage
businesswire | August 03, 2023
Ermetic, a leading cloud infrastructure security company, today announced CNAPPgoat, an open source project that allows organizations to safely test their cloud security skills, processes, tools and posture in interactive sandbox environments that are easy to deploy and destroy. CNAPPgoat supports AWS, Azure and GCP platforms for assessing the security capabilities included in Cloud Native Application Protection Platforms (CNAPP).
The CNAPPgoat project will be officially presented at DEF CON Demo Labs in Las Vegas on Friday, August 11 from 12:00pm-1:55pm by Noam Dahan, Research Lead and Igal Gofman, Head of Research for Ermetic. On Wednesday, August 16 at 10am PST/1pm EST, Ermetic will present a webinar on using CNAPPgoat, to register visit thislink.
Unlike projects that illustrate possible attack paths, CNAPPgoat provides a large and expanding library of scenarios that security teams can execute to create a customized cloud environment for simulating unsecured and vulnerable assets and validating their defenses. The ability to easily provision a vulnerable environment with a broad range of risk scenarios provides the following benefits:
Create a sandbox for testing an organization’s security posture by assessing security team capabilities, procedures and protocols
Use vulnerable environments for hands-on workshops to train team members on new skills and techniques
Provision a “shooting range” for pentesters to test their skills at exploiting the scenarios and developing relevant capabilities
Benchmark CNAPP tools against known environments to evaluate their capabilities
“Compared to existing open-source projects that create ‘capture the flag’ scenarios where participants are expected to follow a certain path, CNAPPgoat spans the leading cloud provider platforms and CNAPP capabilities while providing a modular and granular approach for provisioning specific categories of risks and vulnerabilities,” said Igal Gofman, Director of Research for Ermetic.
“This breadth and depth allows pentesters and defenders to precisely isolate the elements they want to explore for training, new skills acquisition, prevention and security posture assessments,” added Noam Dahan, Research Lead.
CNAPPgoat enables security teams, trainers and pentesters to provision and run vulnerable scenarios from the following modules that make up the CNAPP specification defined byGartner:
Cloud Infrastructure Entitlement Management (CIEM) - covers risks associated with identities and entitlements, such as the unintended ability of an identity to escalate its privileges
Cloud Workload Protection Platform (CWPP) - includes the exposure of workloads to vulnerabilities such as running vulnerable/end of life software or OS versions
Cloud Security Posture Management (CSPM) - spans the misconfiguration of cloud infrastructure components, such as publicly exposed storage resources
Infrastructure as Code (IaC) scanning - will be added soon for finding misconfigurations directly in the code
CNAPPgoat is an open community initiative designed to be used by anyone for commercial, technical and educational purposes. See today’sblogfor implementation details. Additional artifacts including deeper technical dives and guides will be released soon. Contributions are encouraged including new scenarios, scenario proposals, issues, suggestions, feature requests or simply sharing feedback. To learn more and access CNAPPgoat visit thislink.
About Ermetic
Ermetic reveals and prioritizes security gaps in AWS, Azure and GCP and enables organizations to remediate them immediately. The Ermetic cloud native application protection platform (CNAPP) uses an identity-first approach to unify and automate cloud infrastructure entitlement management (CIEM), cloud security posture management (CSPM), cloud workload protection and Kubernetes security posture management (KSPM). It unifies full asset discovery, deep risk analysis, runtime threat detection and compliance reporting, combined with pinpoint visualization and step-by-step guidance. The company is one of America’s Best Startup Employers according toForbesand led by proven technology entrepreneurs whose previous companies have been acquired by Microsoft, Palo Alto Networks and others. Ermetic has received funding from Accel, Forgepoint, Glilot Capital Partners, Norwest Venture Partners, Qumra Capital and Target Global.
Read More
Application Infrastructure, Storage Management
prnewswire | August 11, 2023
DataBank, a leading provider of enterprise-class edge colocation, interconnection, and managed services, announced today a new approach to building high-density data centers to accommodate High-Performance Computing (HPC). Enabling HPC, Universal Data Hall Design (UDHD) empowers businesses with the flexibility to support any deployment their workloads require.
With a market expected to reach $103.74 billion by 2030, generative AI's accelerated adoption has driven an increase in demand for high-density colocation. As technology continues to advance, data centers must be able to scale and adapt quickly to handle an increasingly diverse range of workloads – from power-dense HPC clusters to sprawling hyperscale cloud installations to traditional raised-floor, enterprise colocation.
"In order to future-proof their facilities, multi-tenant data center operators must rethink facility design, construction, and operations to allow for more flexibility and sustainability," said Eric Swartz, vice president of engineering at DataBank. "With UDHD, DataBank is able to accommodate hyperscale, traditional, and HPC all within the same, highly secure data hall."
Key elements to DataBank's Next-Gen Data Centers implementing a Universal Data Hall Design are the traditional components of data center colocation with an eye toward flexibility and resiliency:
Space - Starting with slab floor and all power and cooling infrastructure outside the data hall as the initial base, with raised floor and water to rack layers that easily can be added to any hall; this layered design approach allows any hall within the data center to be adjusted to customer needs.
Power - Support for distribution as traditional 120/208V or high density 240/415V as whips or through busway without change to the supporting infrastructure.
Cooling - With a closed chilled water loop and the layered design approach, each hall can independently support different cooling methods from flooded room to localized air delivery using raised floor and even water to the rack supporting rear door heat exchangers and/or direct chip cooling.
This design renders the additional benefit of sustainability, as efficient power and water systems reduce the consumption of resources.
"Universal Data Hall Design is crucial to innovation. As technology evolves, our data centers are able to evolve with it," said Joe Minarik, COO of DataBank. "While most of the industry is trying to navigate the here and now, we're already building the data centers of the future."
About DataBank
DataBank helps the world's largest enterprises, technology, and content providers ensure their data and applications are always on, always secure, always compliant, and ready to scale to meet the needs of the artificial intelligence era. Our edge colocation and infrastructure footprint consists of 65+ "HPC-ready" data centers in 27+ markets, 20 interconnection hubs, and on-ramps to an ecosystem of cloud providers with virtually unlimited reach. We combine these platforms with contract portability, managed security, compliance enablement, hands-on support, and a guarantee of 100% uptime availability, to give our customers absolute confidence in their IT infrastructure and the power to create a boundless digital future for their business.
Read More
Hyper-Converged Infrastructure, Windows Systems and Network
businesswire | July 17, 2023
StratCap announce today that in Q2 2023 the Company acquired nearly $90 million of essential digital infrastructure assets including 13 cell towers and a data center.
The 13 cell tower acquisitions included both individual and portfolio transactions with towers located throughout Missouri, Wisconsin, Florida, Tennessee, and New York. Primary tenants on the towers include the three major broadband carriers, AT&T, Verizon and T-Mobile, as well as Dish, Wisconsin Electric Power Company, Wisconsin Power & Light, and an AT&T affiliate that supports AT&T’s First Net Network, which is dedicated to first responders (police, fire, rescue, etc.). Todd Rowley, head of StratCap’s Wireless Infrastructure Platform stated, “The ongoing deployment of 5G networks and continuous increases in mobile data usage are catalyzing both growth and investor appetite in what we believe is a very resilient sector.”
The Company also acquired a 127,000 square foot data center in Toronto, Canada. The facility boasts two premier credit-rated tenants, ready access to rich fiber connectivity and 10MVA of installed critical capacity, with plans to increase to 27MVA. The acquisition was part of an institutional joint venture wherein StratCap took a minority stake in the property, yet led the acquisition process and will continue to manage the overall facility. Bryan Marsh, head of StratCap's Global Data Center Platform commented, "This is a mission critical facility that plays a vital role in the digital economy. We are excited to align ourselves with a valued institutional partner to participate in such a dynamic asset with in-place rental income, exceptional tenants, and a value-add growth opportunity though potential expansion."
StratCap remains bullish on digital infrastructure given demand drivers like the increasing number of connected devices, growing mobile data usage, the essential role of connectivity in our lives, and new technologies like 5G, autonomous cars, artificial intelligence, and more. Jim Condon, Managing Partner of StratCap, stated, “Digital transformation is moving deeper into all aspects of the global economy and our personal lives. Digital infrastructure assets like cell towers, data centers, fiber networks, and the like, play a mission critical role in making it all work, as well as creating a solid, scalable foundation for the future.”
About StratCap
StratCap is a privately held, global investment management platform committed to providing access to dynamic asset classes and highly experienced investment professionals. The company is focused on a wide range of digital economy assets with an emphasis on digital infrastructure, sustainability, and technology-centric sectors. StratCap Wireless is an affiliate company focused on acquiring, developing, and managing a variety of telecommunications infrastructure assets that support mobile communications, internet connectivity and data storage.
Read More