Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Containers

Top 12 Container Scanning Tools for 2025

Kubernetes is a revolutionary technology for orchestrating containerized applications, enabling organizations to deploy and manage applications efficiently. Containers’ portability, scalability, and agility have transformed software development and deployment. However, these benefits come with significant security challenges, including risks associated with vulnerabilities in container images and potential misconfigurations.

Strengthen LLMs with Sysdig Secure

The term LLMjacking refers to attackers using stolen cloud credentials to gain unauthorized access to cloud-based large language models (LLMs), such as OpenAI’s GPT or Anthropic Claude. This blog shows how to strengthen LLMs with Sysdig. The attack works by criminals exploiting stolen credentials or cloud misconfigurations to gain access to expensive artificial intelligence (AI) models in the cloud. Once they gain access, they can run costly AI models at the victim’s expense.

Resolve Kubernetes Issues Fast + New AWS Monitoring Features! #Kubernetes #CloudSecurity

Tune in to This Month in Datadog to learn about Kubernetes Active Remediation, which enables you to resolve workload issues with contextual next steps, as well as Datadog IaC Security and a trio of new features for monitoring AWS resources.

CrowdStrike Named a Leader in 2024 GigaOm Radar for Container Security

CrowdStrike has been recognized as a Leader and Fast Mover in the 2024 GigaOm Radar for Container Security, marking another milestone in our mission to secure the cloud with the industry's most unified and comprehensive cloud security solution. Kubernetes has become the fastest-growing project in the history of open-source software — more than 60% of enterprises have adopted it.

Refresh yourself on 2024's top cyber attack trends to stay safe in 2025

We’re officially in the final days of 2024, a year so eventful it feels difficult to remember half of what happened. We had the Olympics in Paris, which turned the world into fans of sharpshooting, breakdancing, and the pommel horse; a solar eclipse visible in totality from the US for the first time since 1979; and a monthslong, very impassioned rap battle between Kendrick Lamar and Drake.

Introducing Low-Latency DNS Policy with eBPF in Calico Enterprise

In Kubernetes, pods often need to securely communicate with external resources, such as internet services or APIs. Traditional Kubernetes network policies use IP addresses to identify these external resources. However, managing policies with IP addresses can be challenging because IPs often change, especially when dealing with dynamic websites or APIs.

Top 8 RBAC Tools Every Kubernetes Admin Should Know

Role-Based Access Control (RBAC) is important for managing permissions in Kubernetes environments, ensuring that users have the appropriate level of access to resources. However, organizations often encounter challenges in effectively managing their role-based access control systems, which can lead to security vulnerabilities and compliance issues. Below are the best RBAC tools for managing Kubernetes RBAC, ensuring compliance and enhancing security within cloud-native applications.

How Kubernetes Simplifies Configuration Security

This is the second blog post in a series exploring how Kubernetes, despite its inherent complexity, provides features that simplify security efforts. Kubernetes presents an interesting paradox: while it is complex, it simplifies many aspects of deploying and managing containerized applications, including configuration security. Once you navigate its learning curve, Kubernetes unlocks powerful capabilities and tool support that make managing configuration security significantly easier.

Bedrock Slip: Sysdig TRT Discovers CloudTrail Logging Missteps

While working on Amazon Bedrock APIs and developing detection mechanisms for Sysdig customers, the Sysdig Threat Research Team (TRT) discovered an unusual behavior in the way some of these APIs were logged in CloudTrail. Specifically, failed Bedrock API calls were logged in the same manner as successful calls, without providing any specific error codes. The lack of error information in API responses may hinder detection efforts by generating false positives in CloudTrail logs.

How to secure every stage of the CI/CD pipeline with Sysdig

Securing operations in the cloud can seem daunting. To protect your organization, you need to have the proper preventative and reactive safeguards in place at every step of the software development cycle. But it doesn’t have to be as complex as it sounds. This blog outlines how to secure the entire software development lifecycle, emphasizing the “shift left” approach, which aims to catch vulnerabilities and issues early in the development process to reduce both risks and costs.