Sysdig

Better together with Sysdig and Anchore: Comprehensive container security across the software development lifecycle

Mar 8, 2019 By Pawan Shankar In Sysdig

In the new cloud-native world, ephemeral services like containers make security a challenging task. As enterprises start adopting containers in production, they suffer from a great deal of variance in the software, configuration, and other static artifacts that exist across their organization’s container image set.

Read Post

Sysdig

Read more about Better together with Sysdig and Anchore: Comprehensive container security across the software development lifecycle

Announcing Sysdig Secure 2.3: NIST + PCI image compliance checks, Kubernetes and Docker remediation tips, and more!

Mar 5, 2019 By Pawan Shankar In Sysdig

Today we are very excited to announce our latest release — Sysdig Secure 2.3! In this version of Sysdig Secure, we have invested heavily in hardening the compliance posture of Kubernetes, Docker configurations, and container images. We have released a set of features that provide compliance focused image scanning, guided remediation, compliance dashboards, and more.

Read Post

Sysdig

Read more about Announcing Sysdig Secure 2.3: NIST + PCI image compliance checks, Kubernetes and Docker remediation tips, and more!

Sysdig and Falco now powered by eBPF.

Feb 27, 2019 By Gianluca Borello In Sysdig

At Sysdig we’ve recently undergone a pretty interesting shift in our core instrumentation technology, adapting our agent to take advantage of eBPF – a core part of the Linux kernel. Sysdig now supports eBPF as an alternative to our Sysdig kernel module-based architecture. Today we are excited to share more details about our integration and the inner workings of eBPF. To celebrate this exciting technology we’re publishing a series of articles entirely dedicated to eBPF.

Read Post

Sysdig

Read more about Sysdig and Falco now powered by eBPF.

Sysdig and IBM to collaborate on IBM Cloud Private & IBM Multicloud Manager container monitoring and security

Feb 12, 2019 By Eric Carter In Sysdig

Today at Think 2019 we’re announcing our intent to work with IBM to support the Sysdig Cloud-Native Intelligence Platform on IBM Cloud Private and IBM Multicloud Manager. By supporting IBM Multicloud Manager and IBM Cloud Private, Sysdig will help IBM customers accelerate the transition to cloud architectures.

Read Post

Sysdig

Read more about Sysdig and IBM to collaborate on IBM Cloud Private & IBM Multicloud Manager container monitoring and security

Detecting exploits of CVE-2019-5736: runc container breakout

Feb 11, 2019 By Pawan Shankar In Sysdig

Earlier today, CVE-2019-5736 was announced regarding a runC container breakout. Given the high CVSS rating of 7.2, it is imperative to quickly patch your systems.

Read Post

Sysdig

Read more about Detecting exploits of CVE-2019-5736: runc container breakout

Enable Kubernetes Pod Security Policy with kube-psp-advisor

Feb 6, 2019 By Kaizhe Huang In Sysdig

Kubernetes Pod Security Policy is a mechanism to enforce best security practices in Kubernetes. In this tutorial, we will explain how to enable Kubernetes Pod Security Policy across your cluster using kube-psp-advisor to address the practical challenges of building an adaptive and fine-grained security policy on Kubernetes in production.

Read Post

Sysdig

Read more about Enable Kubernetes Pod Security Policy with kube-psp-advisor

CVE-2018-18264 Privilege escalation through Kubernetes dashboard

Jan 10, 2019 By Lorenzo David In Sysdig

A recently disclosed vulnerability in Kubernetes dashboard (CVE-2018-18264) exposes secrets to unauthenticated users. In this blog post we’ll explore some key takeaways regarding monitoring privilege escalation on Kubernetes.

Read Post