Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

teleport

How to Hack Kubernetes (and How to Protect It)

Mar 8, 2022 By Kolawole Samuel Adebayot In Teleport

Kubernetes is a valuable resource and a leading container management system in development pipelines across the world, but it’s not exempt from malicious attacks. Using Kubernetes requires a deep understanding of Kubernetes’ environment—including the different vulnerabilities you can be exposed to while creating, deploying, or running applications in your clusters.

Read Post
detectify

How women of Detectify are redefining the security sector for the better

Mar 8, 2022 By Detectify In Detectify

TL/DR: Gender inequality and the lack of women is ubiquitous in tech companies – more so in cybersecurity. While it has been a debate that’s been on for years, more action needs to take place to empower female professionals and founders in the sector. In honor of International Women’s Day, a handful of women at Detectify shared more about what inspires them and how they encourage other women to take up space despite the challenges and thrive in the security industry every day.

Read Post
netskope

3 Strategies for CISOs to Frame Meaningful Security Conversations with Corporate Boards

Mar 8, 2022 By Shamla Naidoo In Netskope

One chief information security officer (CISO) recently asked me how he should describe SASE (secure access service edge) and zero-trust networking to his company’s directors. My answer was easy: You shouldn’t. As companies revamp their technology infrastructure to leverage cloud efficiencies and enable a remote workforce, cybersecurity is now mission-critical for senior executives and boards of directors.

Read Post
armo

CVE-2022-0492 - Privilege Escalation and Container Escape Vulnerability and its impact on Kubernetes

Mar 8, 2022 By Leonid Sandler In ARMO
On March 4th, a new privilege escalation vulnerability (CVE-2022-0492) in the Linux kernel was published. It has the potential to allow container escape and take control over the entire node on which the container runs. All the CSPs and Linux distribution providers have issued patches to close this vulnerability. Unfortunately, there is no unified kernel version numbering across these platforms and some of them allow to apply a patch without changing the kernel version number.
Read Post
elastic

Elastic Security 8.1: Stop novel attacks in their tracks

Mar 8, 2022 By Mark Settle In Elastic

With the release of Elastic Security 8.1, enhance defenses against novel attacks like Log4Shell and prevent adversaries from compromising macOS systems. Achieve visibility into host-based network activity, leverage new sources of threat intelligence, collect data from across your enterprise, and more. Let’s jump in.

Read Post

2021 Prediction: Growing awareness of privacy will drive behavior change

Mar 8, 2022 By Lookout In Lookout
In 2021, we predicted that the growing awareness of privacy will drive behavior change. Individuals and organizations are becoming more conscious of how data collected by mobile apps could be used with malicious intent. Burak Agca, Senior Sales Engineer, talks about what we got right, and what surprised us.
View Video

2021 Prediction: Mobile will enable ransomware

Mar 8, 2022 By Lookout In Lookout
As many of us continue to stay at home, we are using our phones, tablets and Chromebooks more – both for personal and work purposes. With their small screens and multitude of messaging channels, they are a perfect vector for phishing messages aimed at stealing credentials for corporate access. Hear from Kristna Balaam, Senior Security Intelligence Researcher about what we got right, and what surprised us. See our 2022 predictions on our newest blog: bit.ly/3pS3rfb
View Video

Securing AWS API access with Netskope Inline Cloud Protection

Mar 8, 2022 By Netskope In Netskope
Watch this demo, presented by Yuri Duchovny, Netskope Principal Global Solutions Architect. Netskope Intelligent Security Service Edge (SSE) is fast, easy to use, and secures your transactions wherever your people and data go. Be ready for anything on your SASE journey with Netskope’s SSE solution. SSE is the convergence of security capabilities into a single cloud-centric platform.
View Video
netskope

Cloud Threats Memo: Tightening Up Leaky GitHub Repositories

Mar 8, 2022 By Paolo Passeri In Netskope

Another day, another cloud service leaking personal data because of a misconfiguration. And before you jump to any conclusions, no, it’s not a leaky bucket on AWS S3 or a public blob on Microsoft Azure… The culprit is, once again, GitHub, where an open-source hardware manufacturer has inadvertently left exposed a private-to-public repository that “could have enabled unauthorized access to information about certain user accounts on or before 2019.”

Read Post
sysdig

CVE-2022-0492: Privilege escalation vulnerability causing container escape

Mar 8, 2022 By Stefano Chierici In Sysdig

Linux maintainers disclosed a privilege escalation vulnerability in the Linux Kernel. The vulnerability has been issued a Common Vulnerability and Exposures ID of CVE-2022-0492 and is rated as a High (7.0) severity. The flaw occurs in cgroups permitting an attacker to escape container environments, and elevate privileges. The vulnerable code was found in the Linux Kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.