Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Containers

tigera

Kubernetes Q3-2020: Threats, Exploits and TTPs

Sep 30, 2020 By Manoj Ahuje In Tigera

Kubernetes has become the world’s most popular container orchestration system and is taking the enterprise ecosystem by storm. At this disruptive moment it’s useful to look back and review the security threats that have evolved in this dynamic landscape. Identifying these threats and exploits and being a proactive learner may save you a lot of time and effort…as well as help you retain your reputation in the long run.

Read Post
sysdig

AWS threat detection using CloudTrail and Sysdig Secure

Sep 29, 2020 By Vicente Herrera García In Sysdig

Implementing AWS threat detection with Sysdig Secure takes just a few minutes. Discover how to improve the security of your cloud infrastructure using AWS CloudTrail and Sysdig Cloud Connector. With the rise of microservices and DevOps practices, a new level of dangerous actors threatens the cloud environment that governs all of your infrastructure. A malicious or inattentive cloud API request could have a sizable impact on availability, performance, and last but not least, billing.

Read Post

Securing and Monitoring AWS Container Services

Sep 29, 2020 By Sysdig In Sysdig
Developers, operations, and security teams must work together to address key workflows to secure and monitor containers, Kubernetes and cloud services across the entire cloud-native lifecycle. By addressing mage scanning, runtime security, and compliance, along with monitoring for Kubernetes, container, applications, and cloud services you can automate protection and performance management to accelerate cloud adoption.
View Video
outpost 24

Container inspection: walking the security tight rope for cloud DevOps

Sep 23, 2020 By Sergio Loureiro In Outpost 24

Containers have become very popular with DevOps as a way to increase speed and agility. However, with recent reports of hackers utilizing vulnerabilities in Docker container images to compromise hosts and launch malicious containers – how can we identify this at the time of development to prevent security costing us later?

Read Post
alienvault

Why misconfigurations are such an issue in your containers and Kubernetes

Sep 22, 2020 By David Bisson In AT&T Cybersecurity

Organizations are increasingly incorporating containers and Kubernetes into their IT infrastructure. As reported by ZDNet, Flexera’s “2020 State of the Cloud Report” found that about two-thirds (65%) of organizations were using Docker and that another 14% intended to begin using it at some point. Slightly fewer organizations (58%) were using Kubernetes at the time of the survey, by comparison, with 22% of participants saying they planned to adopt it.

Read Post

Network Policy with GKE

Sep 17, 2020 By Tigera In Tigera
By default, pods are non-isolated; they accept traffic from any source. The Google GKE solution to this security concern is Network Security Policy that lets developers control network access to their services. Google GKE comes configured with Network Security Policy using Project Calico which can be used to secure your clusters. This class will describe a few use cases for network security policy and a live demo implementing each use case.
View Video
sysdig

Manage AppArmor profiles in Kubernetes with kube-apparmor-manager

Sep 16, 2020 By Kaizhe Huang In Sysdig

Discover how Kube-apparmor-manager can help you manage AppArmor profiles on Kubernetes to reduce the attack surface of your cluster. AppArmor is a Linux kernel security module that supplements the standard Linux user and group-based permissions to confine programs to a limited set of resources. AppArmor can be configured for any application to reduce its potential attack surface and provide greater in-depth defense.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.