<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=645174729237247&amp;ev=PageView&amp;noscript=1">

Monthly KernelCare Update - November 2020

Published Dec 1, 2020 4:00:00 PM / Last update: Dec 1, 2020
by KernelCare Team posted in monthly updates

0 Comments

The KernelCare team strives to make sure you never miss a critical patch. In November, we worked to boost our products' capacity and provide early updates regarding recent vulnerabilities. Explore more material that makes sysadmin life easier in this newsletter.

Read More

IT Compliance tools for the Enterprise (Banks, Insurance, Healthcare)

Published Nov 30, 2020 4:00:00 PM / Last update: Dec 1, 2020
by KernelCare Team posted in soc2, compliance, KernelCare Enterprise

0 Comments

Organizations that operate in the enterprise space – healthcare, insurance, banks, etc. – have unique and challenging cybersecurity compliance obligations. Enterprise data is, after all, frequently targeted.

Read More

How KernelCare Works to Keep You FedRAMP Compliant

Published Nov 25, 2020 4:00:00 PM / Last update: Nov 25, 2020
by KernelCare Team posted in compliance, KernelCare Enterprise

0 Comments

Keeping servers safe and keeping them secure and compliant, becomes a full-time job, one that can’t be left to chance, one that must be fully automated and fully supported. To do that, you need a live patching tool that integrates with automation tools and vulnerability scanners, one that is supported with the latest patches, and one that lets you decide what patches are rolled out across your organization and one that runs inside the firewall. A live patching solution not only makes software updates easier, but it also keeps you compliant with two sections of FedRAMP requirements including flaw remediation (SI-2) and malicious code protection (SI-3) of Security and Privacy Controls for Information Systems and Organizations.

Read More

KernelCare ePortal 1.17-1 Mandatory Upgrade

Published Nov 25, 2020 3:42:07 PM / Last update: Nov 25, 2020
by KernelCare Team posted in KernelCare Update

0 Comments

The new ePortal version being released today. We strongly emphasise our ePortal based customers to upgrade to ePortal 1.17-1.

Read More

kpatch: Overview of Enterprise Live Patching Services

Published Nov 23, 2020 4:00:00 PM / Last update: Nov 25, 2020
by KernelCare Team posted in KernelCare Blog

0 Comments

There are currently a whole host of live patching tools on the market. Such options vary significantly in cost, with some significantly more affordable or expensive than others. Moreover, there are live patching tools that are more suitable for only one or two distributions, and then there are distribution-agnostic tools. So much variety can make it challenging to select the perfect option for your business.

Read More

Keeping Your Company Data Safe From Ransomware on Linux

Published Nov 20, 2020 4:00:00 PM / Last update: Nov 20, 2020
by KernelCare Team posted in Vulnerability

2 Comments

In this article, we explore ransomware, specifically the unique way it attacks Linux-based systems.

"It was called a tribute before a battle, and a ransom afterwards".

This famous quote from English author T.H. White represents the delicate balance required to keep cyber attackers at bay. Your company pays tributes to security staff, an IT department, and anti-malware vendors as much as possible to keep your Linux servers secure.

Read More

KernelCare Patches for SAD DNS Are Here

Published Nov 18, 2020 4:00:00 PM / Last update: Nov 24, 2020
by KernelCare Team posted in CVE, Live Patching

3 Comments

Sad DNS (Side-channel AttackeD DNS) is a vulnerability that was disclosed by academics from the University of California and Tsinghua University, at the ACM Conference on Computer and Communications Security CCS 2020. The vulnerability was assigned to CVE-2020-25705. It affects distributions starting from the 7th v.o. (i.e. RHEL6 is not affected, as its kernel doesn’t include ICMP responses throttling feature yet). KernelCare patches will be released shortly. The newly academic discovery lets a malicious actor poison the cache of a DNS server and thus potentially redirect user traffic to sites or services hosting undesired or dangerous content. 

Read More

KernelCare ePortal 1.16-1 release is here

Published Nov 17, 2020 5:37:04 PM / Last update: Nov 17, 2020
by KernelCare Team posted in KernelCare Update

0 Comments

Upcoming ePortal 1.16-1 release candidate will include:

Read More

To Reboot or Not to Reboot? That is the Question for Many Sysadmins

Published Nov 16, 2020 4:00:00 PM / Last update: Nov 17, 2020
by KernelCare Team posted in Live Patching

0 Comments

A server reboot cycle is a generic name given to the process of rebooting a fleet of servers in an organization. This can be due to several factors, but it is often because patches and updates require a reboot – they either target a critical component of the operating system or some shared library being used by several components or programs. The number of servers that will be rebooted directly impacts the operation’s duration and the associated risk. The more servers that need to be updated, the harder is the planning and execution process.

Read More

Live patching vs server reboot cycles: Pros and Cons

Published Nov 12, 2020 5:40:37 PM / Last update: Nov 19, 2020
by KernelCare Team posted in Live Patching

0 Comments

Ever heard of a pipe-freeze kit? A pipe-freeze kit forms a plug of ice inside a water pipe, allowing a plumber to make repairs without shutting off water. Like water pipes, there are some things that you don't want to shut down to fix.

Rebooting a system to install security updates and patches isn't necessary, but it happens every day in the form of server reboot cycling. Conversely, live patching of an enterprise Linux system flash freezes central processing units (CPUs) to install patches automatically, taking nanoseconds to complete.

Read More

    cover for blog

    Download Whitepaper

    Subscribe to Email Updates

    Recent Posts