Aqua Security Introduces Industry’s First Serverless Function Assurance for Securing Serverless Environments

Aqua 4.0 release also tightens Linux host protection and compliance on the heels of recent vulnerability disclosures

Boston, MA – 4 March 2019 – Aqua Security, the leading platform provider for securing container-based and cloud native applications, announced today the availability of version 4.0 of the Aqua cloud native security platform, introducing new security and compliance controls for serverless functions and Linux hosts. As enterprise development and deployment of cloud native microservices-based applications continue to accelerate, Aqua enables security teams to manage and enforce security policies across a blend of VM-based containers, Containers-as-a-Service (CaaS) and Function-as-a-Service (FaaS) spanning both multi-cloud and on-premises environments.

Gartner Distinguished VP Analyst, Neil MacDonald, notes that “securing serverless will force information security and risk professionals to focus on the areas we retain control over. Specifically, the integrity and assurance of the code, identities of the code and developers, permissioning, and serverless configuration, including network connectivity.”(Gartner, Security Considerations and Best Practices for Securing Serverless PaaS, 4 September 2018, by Neil MacDonald)

Aqua’s comprehensive serverless security solution now includes a full chain of controls to discover functions across multiple cloud accounts, scan them for vulnerabilities, detect excessive permissions and configuration issues, and provide function assurance – preventing the execution of untrusted or high-risk functions based on defined policies. The key controls for serverless environments include:

  • Functions discovery: Creating an inventory of functions stored across cloud accounts.
  • Vulnerability scanning: Deep scanning of a functions packages and dependencies for known vulnerabilities (CVEs), based on multiple sources and supporting multiple programming languages.
  • CI/CD Integration: “Shifting left” beyond scanning existing functions, Aqua provides development teams with plug-ins for Continuous Integration environments to detect security issues as functions are being built.
  • Permissions Assessment: Identifying use of excessive or over-provisioned permissions specific to the serverless cloud environment, and monitoring for unused permissions –reducing the potential attack surface of a function.
  • Sensitive Data Assessment: Detecting secrets and hard-coded keys within the functions themselves, or within environment variables, specific to the cloud environment – for instance AWS credentials or Azure Authentication keys.
  • Function assurance: Security teams can set policies to determine the risk threshold to allow or disallow function execution, based on a variety of factors including CVE severity, CVSS score, sensitive data, and permissions.
  • Function anomaly detection: Monitoring of function usage patterns and alerting on sudden spikes in the frequency or duration of function execution.

Another significant addition to the Aqua platform is tighter controls to secure the Linux hosts that run containers. This addresses potential risks from vulnerabilities such as the one discovered earlier this year when a severe new vulnerability (CVE-2019-5736) was disclosed in runc, a component used in most container runtimes which is part of Linux OS distributions, highlighting the need for securing the container stack at both the workload and host levels.

“The new technologies supporting cloud native applications require a holistic approach to security and compliance, across the application lifecycle as well as up and down the stack, and this has become more evident in recent months with significant vulnerabilities discovered in Kubernetes and runc for example,” notes Amir Jerbi, CTO and co-founder at Aqua Security. “With this new release from Aqua, our customers can protect their applications against those, as well as yet undiscovered vulnerabilities by implementing tight compliance and whitelisting-based zero-trust security.”

Aqua 4.0 builds on previous Aqua host protections that already included testing hosts according to CIS (Center for Internet Security) benchmarks, scanning hosts for known vulnerabilities, and monitoring user logins, to provide:

  • Malware Scanning: Detecting malware in the host OS, or any of its components.
  • Vulnerability scanning: Scanning for CVEs found in the host OS, or any of its components.
  • Whitelisted and Blacklisted Users and OS Packages: Security teams can specify which types of users and OS packages are either allowed or forbidden from being used on a host.
  • User Activity Monitoring: Aqua now logs all user commands on the host OS for security and compliance tracking (in addition to the previously available user logins and login attempts tracking).
  • CIS Benchmarks Testing: Having achieved CIS certification for its Kubernetes benchmark, Aqua now provide detailed information on each benchmark test success/failure to provide teams with remediation information.
  • Custom Benchmark Scripts: Enabling the upload of scripts that customize benchmarks to account for configurations that aren’t supported in the standard CIS benchmarks, including Kubernetes clusters on Red Hat OpenShift.
  • Host Assurance: Allowing to set policies that will determine a threshold for host compliance and security risk based on the results of the above scans and checks and generate alerts and audit events upon policy violations.

Aqua CSP v4.0 will be generally available in mid-March for existing customers and new deployments.

About Aqua Security
Aqua Security enables enterprises to secure their container and cloud-native applications from development to production, accelerating application deployment and bridging the gap between DevOps and IT security. Aqua’s Cloud native Security Platform provides full visibility into container activity, allowing organizations to detect and prevent suspicious activity and attacks in real time. Integrated with container lifecycle and orchestration tools, the Aqua platform provides transparent, automated security while helping to enforce policy and simplify regulatory compliance. Aqua was founded in 2015 and is backed by Lightspeed Venture Partners, Microsoft Ventures, TLV Partners, and IT security leaders, and is based in Israel and Boston, MA. For more information, visit www.aquasec.com or follow us on twitter.com/AquaSecTeam

Media contact:
Rose Ross for EMEA
Omarketing
rose@omarketing.com
+44 (020) 8255 5225

Playpal Successfully Tests Revolutionary New AI-powered Health Platform

Playpal completes PoC delivering proactive health insights to users and communities in an effort to improve, quantify and incentivize health – based on the human “health capital” model.

[Denver, Colorado, US], [27 February 2019] — Playpal, the AI-powered health tech platform, announces today the completion of its proof of concept (PoC), successfully creating both iOS and web versions of its new platform set to revolutionize the health industry.

The platform collects and consolidates IoT health data from across apps and devices to deliver a holistic picture of a user’s health. With a view to intervene in health depreciation, the platform utilizes artificial intelligence and machine learning to offer individualized recommendations for the user’s better health. Playpal is powered by a dual incentivization model that prompts healthy actions through the intrinsic motivation of gamified health and extrinsic reward in the form of monetary benefits.

The PoC successfully demonstrated the various architectural elements of the platform involving the gathering and monitoring of user data from mHealth apps and devices, the implementation of public databases, the correlation of nutrition data with fitness data, and visualizations of user-specific profiles and recommendations.

Analysis shows that the proliferation of mHealth devices and apps has increased the average consumer’s accessibility to health information and tracking. However, the sheer volume of fragmented information in a cluttered marketplace causes confusion and prevents any sensible absorption or utilization by the consumer. Simultaneously, low engagement in healthy behaviour is driving down retention rates for health-oriented programs, devices and apps, while healthcare costs are skyrocketing.

To mitigate these problems, Playpal recognizes the need to assimilate data from heterogeneous sources and promote self-awareness and management of health. The platform integrates the requirements of individual users, commercial entities and communities to deliver a one-stop solution through incentivized collection, consolidation and smart visualization of health data. While users will benefit from proactive data-driven health advice, relevant stakeholders will also be able to receive valuable insights on their community’s health profile with the added advantage of streamlining programs to encourage healthy behaviour. Integration with the platform will increase user engagement in health programs and reduce healthcare costs, resulting in an overall healthier population.

Playpal CEO Eesha Sheikh remarked: “We live in a time where more and more people own a fitness device and health information through the internet is at our fingertips. But it is difficult to make sense of all these various sources of information, let alone translate it into your own particular needs and lifestyle. Playpal’s platform helps you decide what makes sense for you, to enable you to live and invest in your best life.”

The underlying philosophy behind the platform is the economic model of human “health capital.” This model holds that each individual is both a producer and a consumer of health, where health is treated like a stock that can fluctuate depending on the management of, and “investments” in that stock. Playpal’s platform brings to life this concept of health as a quantifiable asset that holds financial value, which can then be combined to define the collective health capital of whole communities. One of the goals of the platform is to offer tools that enable users to improve their health capital and thus, earn the financial value of their health “asset.”

In addition to the monetary benefit users will gain through the financial value of their “assets,” the platform will encourage intrinsic motivation through gamification. Riding the wave of recent endeavors into gamified health, not only will the platform feature several goal-oriented design elements, but Playpal will also cultivate an ecosystem of health games integrating with the platform.

Eesha Sheikh continued: “We are thrilled to announce the completion of the proof of concept and the fact we have successfully demonstrated that the health capital model can be rendered into a working form. Some major components of the platform were successfully tested, confirming that the idea is practical and it works.”

Going forward, Playpal will now focus on creating a minimal viable product (MVP) with specific focus on implementing top-grade security through blockchain, setting up the artificial intelligence engine, development of an Android application, third party integration, and a social infrastructure in the form of a community platform. To find out more, please visit the Playpal website.

–Ends–

About Playpal
Playpal is an AI-powered and blockchain-secured platform that collects and consolidates health data from across apps and wearables to deliver a holistic picture of a user’s health. With a view to intervene in health depreciation, the platform utilizes artificial intelligence and machine learning to offer individualized recommendations for the user’s better health. Playpal is powered by a dual incentivization model that prompts healthy actions through the intrinsic motivation of gamified health and extrinsic reward in the form of financial benefit. The underlying philosophy of Playpal is that of “health capital”: that health can be quantified and represents a measurable asset for individuals and communities.

Find out more how Playpal is empowering the health of the future at http://playpal.io/.

PR Contact: Clara Florey at clara@disPRuptive.com, +44 7943 774236

Sterlite Tech unveils integrated Digital Reinvention portfolio for CSPs at #MWC2019

With this portfolio of offerings, CSPs can accelerate their digital reinvention with DevOps-enabled flexible, agile and scalable solutions

Pune, India and Barcelona, Spain – February 26, 2019Sterlite Tech [BSE: 532374, NSE: STRTECH], a global data network solutions company, today unveiled its Digital Reinvention portfolio for fast forwarding Communication Service Providers’ (CSPs) digital reinvention at #MWC2019. This next-gen integrated portfolio encompasses best-in-class software and solutions that transform every aspect of CSPs’ business to make digital reinvention simpler and faster, and includes digital customer engagement, programmable networking and intelligence, digital billing and revenue management, big data insights and smart Wi-Fi service management.

Highlighting the need for this flexible and interoperable portfolio, Anshoo Gaur, CEO – Software Business, Sterlite Tech, said, “CSPs have fuelled the development and evolution of the digital economy, with ubiquitous networks. With the unprecedented growth in data globally, CSPs are gearing up to provide personalised end-user experience, while adopting new technology and driving lower costs.” As the reach and customer engagement driven by content and app providers’ increases, CSPs have to elevate their offering beyond the provision of connectivity infrastructure. “Sterlite Tech’s Digital Reinvention portfolio does just that. It helps CSPs to emerge on top of the digital race by redefining their role and the ways in which they engage with customers and partners,” explained Gaur.

Sterlite Tech’s Digital Reinvention portfolio features Cloud-first products that are DevOps-enabled and have in-built contextual artificial intelligence (AI) and machine learning (ML) that boosts Net Promoter Score (NPS), reduces the cost to serve the new age customers, reduces the Network TCO and time-to-market. Further, it allows CSPs to simplify the adoption of new approaches and business models.

Equipped with the two-speed architecture, the Digital Reinvention portfolio allows CSPs to continue the new breed of services at a faster pace in a new system whereas the existing services can slowly transform module-by-module. Allowing the CSPs to smoothen change management as well as fail-fast and respond-fast to changing consumer expectations, the portfolio’s modular approach allows businesses need based micro-services adoption. This has a faster impact on time-to-market as well as scaling business with digital partnerships.

With CSPs, DSPs, cloud companies, defence and citizen networks focused on connecting the next billion for 5G and IoT era, Sterlite Tech continues to invest in its technology and research capabilities. Working with eight of the top ten global telcos, Sterlite Tech has its presence in over 100 countries with two software delivery centres in India. With an expanding portfolio of over 230 patents, the Company’s unique silicon-to-software capability is unparalleled in the world.

About Sterlite Tech
Sterlite Technologies Ltd [BSE: 532374, NSE: STRTECH] is a data networks solutions leader that designs, builds and manages smarter digital networks globally. It provides end-to-end network solutions for global telecom companies, cloud companies, citizen networks and the defence. With innovation at its core, its technological solutions are developed at Centre of Excellence for broadband research and Centre for Smarter Networks for next-generation network applications. The Company has manufacturing facilities in India, Italy, China and Brazil and two Software Delivery Centres.

For more details, visit www.SterliteTech.comTwitterLinkedInYouTube

Media Relations
LK Pathak
Phone: +91 9925012059
Mail: L.k.pathak@sterlite.com

Investor Relations
Vishal Aggarwal
Phone: +91.20. 30514000
Mail: Vishal.aggarwal@sterlite.com

Corporate Communications
Sumedha Mahorey
Phone: +91. 22. 30450404
Mail: Sumedha.mahorey@sterlite.com

StoryShare launch a SaaS Mobile Communication & Learning Experience Platform following a £1.15 million investment from Gresham House Ventures

London, February 26th, 2019 – StoryShare, a leading SaaS Mobile Employee Experience Platform (EXP), today announced it has raised £1.15 million in growth finance led by Gresham House Ventures. StoryShare provides a SaaS platform to help large organisations, with diverse and mobile workforces, engage and develop employees anywhere, any time on any device.

Leading brands including Unilever, DLA Piper and Renault use StoryShare to help their employees love their work. Increasingly companies acknowledge that staff want to use the same type of technology they use at home at work. StoryShare enables this by delivering a “Netflix” style experience to communication and learning and is proven to significantly improve employee engagement and productivity.

Rob Dumbleton, CEO at StoryShare, comments “We’re delighted with this equity raise. It reflects our success in being at the forefront of mobile learning solutions with some of the world’s largest companies. Importantly, it demonstrates the confidence of the investment market in our strategy and product. It gives our team great impetus to accelerate our growth plans and deliver on our mission “to help employees love their work”.

The funding will support StoryShare’s sales and marketing activity in a market which is expected to grow to $37.6 billion by 2020. With more informed employees outperforming their peers by 77 percent (Gartner), mobile optimised platforms are one of the fastest growing solution segments for enterprise.

Henry Alty, Investment Director, VCTs, Gresham House commented “StoryShare is a great example of a business delivering real employee engagement on mobile. They recognise the challenge of making enterprise applications as engaging as consumer apps, and a great list of customers are a testament to their success. We look forward to working closely with them, as well as the new chair Arlene Adams, to further deliver on the growth they’ve seen to date.”

Arlene Adams joins StoryShare as Non-Executive Chairman of the Board. Adams was the Founder & CEO of Peppermint Technology, the leading SaaS Platform for law firms, where she remains on the board. Previously, she held senior CEO and Director roles at Advanced Computer Software Group (previously IRIS), OLM Group, Valista and Sun Microsystems.

Adams commented on her appointment “StoryShare is disrupting the employee experience market by bringing the technology people love using at home into the workplace. The investment from Gresham House Ventures, and the quality of the team, provide a strong basis for growth and the opportunity for StoryShare is exceptional. I am delighted to be working with the team as they embark on this exciting phase.”

The funding round was led by Gresham House Ventures and advisors included Grant Thornton, Reynolds Porter Chamberlain LLP acting for the Company and Shoosmiths LLP acting for Gresham House Ventures.

The Gresham House Ventures team invests equity of up to £5m in growth businesses, supporting founders with bold ambitions for the future, whilst providing transformational capital and expertise to accelerate business potential.

For further information, please contact:
Oliver Hughes, MHP Communications – 020 3128 8622 / oliver.hughes@mhpc.com
Daniela Sarti, StoryShare – +44 (0) 20 8133 7027 / daniela.sarti@storyshareplatform.com

About StoryShare
StoryShare exists so employees can love their work

StoryShare is a SaaS Communication and Learning Experience Platform optimised for mobile. The Platform delivers “Netflix style” communication and learning experiences to improve employee engagement and better equip people to do their jobs. The service can reach any employee, anytime, anywhere, on any device.

StoryShare is deployed at leading brands including Unilever, Accenture, Covestro, Renault and Upfield.

For more information on StoryShare, please visit www.storyshareplatform.com.

Gresham House
Gresham House plc is an AIM quoted specialist alternative asset manager providing funds, direct investments and tailored investment solutions, including co-investment across a range of highly differentiated alternative investment strategies. The Group’s expertise includes strategic public and private equity, forestry, renewable energy, housing and infrastructure.

Gresham House Ventures, part of the Gresham House Strategic Equity division, seeks to support exciting UK businesses with bold ambitions for the future, by providing transformational growth capital and expertise to accelerate business potential.

Gresham House plc acquired the fund and investment management business of Livingbridge VC LLP in November 2018 and as part of the acquisition the Ventures team, formerly known as Livingbridge Growth, moved across to its new home.

If you would like to find out more about the Gresham House Ventures team’s investment criteria, or if you think you know of a business looking for investment, please get in touch by email to ventures@greshamhouse.com.

For more information on Gresham House and its range of alternative investment strategies and products please visit: www.greshamhouse.com

-ends-

Openet and Samsung Sign 5G Partnership

Openet’s 5G Policy and Charging Platform as part of 5G Ecosystem Solutions with Samsung’s Packet Core Software Products

MWC, Barcelona, 25th February 2019 – Openet today announced that it has formed a partnership with Samsung Electronics Co. Ltd. to provide 5G core network solutions. Under this partnership, Samsung and Openet will cooperate to provide 5G network functions (NFs) in the packet core software solutions.

The joint solution will consist of Openet’s 5G platform, including real-time policy and charging controls, as well as Samsung’s packet core software products.

Commenting on the partnership, “As a pioneer in the years long development of leading-edge 5G solutions, Samsung will work with Openet as the partner, a key innovator in the industry,” said Jaeho Jeon, Executive Vice President and Head of R&D, Networks Business at Samsung Electronics. “We are committed to transforming everyday lives by powering the network for establishing essential infrastructure of the connected world.”

Niall Norton, CEO, Openet, said: “We’ve invested heavily in redeveloping our solutions to be 5G ready. This included developing our software to be cloud native and to support service based architecture and service based interfaces. This was a significant investment to ensure that Openet’s Digital BSS software fully supports 5G. The BSS market has changed, the old business models are gone and world-leading companies like Samsung want to work with independent, innovative and agile vendors who will make a difference. We are very proud to work with Samsung to provide Openet software as part of Samsung’s global 5G ecosystems solutions.”

ENDS

About Openet
Openet provides Digital BSS to enable service providers to create new revenues from digital services, improve customer engagement and be ready for the opportunities from 5G. Our solutions enable service providers to be more agile, innovative and enjoy a faster time to value.

From monetising content and data services over 4G to enabling innovative enterprise IoT offers over 5G, Openet’s Digital BSS offers a fast and agile alternative to the large legacy companies whose track record of over-charging and under delivering has resulted in high failure rates of large scale transformation projects.

Since its foundation in 1999, Openet has been at the forefront of telecoms software development and innovation. Our success is personified by the many long-term relationships it has fostered with the largest, most progressive, and demanding operators across the globe. For more information visit www.openet.com.

A first: Leadmark AI Platform provides precise response forecast for ad campaigns

Machine learning technology predicts results for brands in real time

A new artificial intelligence platform offers a solution to the perennial problem of flawed calculation of campaign effectiveness, effectively eliminating the chronic conundrum of budget wastage. Leadmark, an AI marketing platform, provides internationally an effective solution that steers ad spend to the optimum promotion channels, while simultaneously measuring ROI to be attributed to sales or other response KPIs. The results provided have an accuracy rate of at least 75%, often nearing 90%. Crucially, by using advanced attribution technology it offers same day optimization and predictions.

The Marketing Intelligence Platform and related tools improve efficiency and profitability by pinpointing and zeroing in at the level of marketing activity required to maximize sales and profit as well as minimize costs. The approach relies on and leverages advanced econometric models to determine the performance and ROI of diverse marketing tactics. Leadmark then incorporates cost components and budget constraints to find the optimal allocation of resources in the marketing portfolio so as to reach the required sales and profit goals. The solution thus rests on three pillars:

  • It gathers data from multiple sources (e.g. macroeconomic data, sales data from CRM, call centers and data from physical points of sales).
  • It calculates a number of indexes that have to do with the brand, such as the Brand KPIs that concern the brand funnel and brand Engagement.
  • It factors in important marketing parameters (e.g. offer price), media, creative message and behavioural consumer’s data.

Increasingly deployed not only for brand performance optimization but also for sales forecasting, scenario building and cross-media attribution, the platform has been used, amongst others, in industries such as FMCG, Auto, Energy, Retail traders.

1 2 3 4 102