Three new NGINX ingress controller vulnerabilities reported and how they affect Kubernetes
Three security issues were reported on October 27th by the Kubernetes security community, all of them related to the popular NGINX ingress component.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Containers
Ensuring robust security of a containerized environment
In today’s rapidly evolving digital landscape, containerized microservices have become the lifeblood of application development and deployment. Resembling miniature virtual machines, these entities enable efficient code execution in any environment, be it an on-premises server, a public cloud, or even a laptop. This paradigm eliminates the criteria of platform compatibility and library dependency from the DevOps equation.
What's New in Sysdig - October 2023
“What’s New in Sysdig” is back with the October 2023 edition! My name is Zain Ghani, based in Austin, Texas, joined by my colleague, Matt Baran, based in Los Angeles, California, to share our latest updates with you. The last few weeks have been really exciting at Sysdig.
Detecting Network-Based Anomalies with Calico
In the vast digital landscape, the flow of data across networks is akin to water coursing through a city’s plumbing system. Just as impurities in water can signal potential issues, deviations in network traffic, termed as network inserted anomalies, can hint at cyber threats. These anomalies range from overt signs like unauthorized access attempts to subtler indicators like unusual data transfer patterns.
Implement NIST cybersecurity framework with Calico to reduce security risks in Kubernetes environments
According to the CNCF annual survey released in 2022, 96% of organizations are using or evaluating Kubernetes as a platform for their containerized workloads. Containerization has gained popularity as it fosters DevOps culture and provides the agility and flexibility required for faster software release cycles. Kubernetes has crossed the “adoption chasm” to become a mainstream global technology, emerging as the operating system for the cloud.
Detect Secrets In Docker Images With ggshield - The GitGuardian CLI
Did you know that you can use ggshield to scan docker images for secrets? Many Docker images get shared through places like Dockerhub, and sometimes, images get shared unexpectedly, such as when you have a code leak. We built the `ggshield secret scan docker` command to help. With one simple command, anyone on your team can quickly detect any hardcoded credentials inside a docker image.
How to Handle Secrets in Helm
Learn step-by-step techniques and best practices to handle secrets in Helm charts safely and effectively. Level up your Helm deployments today!
Block the attack paths into your Kubernetes clusters
In today’s world of limited time, we need to be laser-focused on our priorities. This goes double for mission-critical activities, like cybersecurity. We want to prioritize fixing the issues that have the most significant impact on our security posture. An attack path is like a roadmap for attackers, outlining the steps they can take to exploit security weaknesses.
Falcon Cloud Security Kubernetes Admission Controller: Demo Drill Down
Misconfigured containers with root access are commonly deployed in cloud environments, leaving organizations vulnerable to adversaries. See how Falcon Cloud Security Kubernetes Admission Controller provides out of the box policies to prevent misconfigured containers from deploying, ensuring cloud environments are secured and compliant.
Container Security Fundamentals - Linux Capabilities (Part 2)
In this video we're looking at how to harden Docker containers by removing some of the default Linux capabilities granted to them. To learn more, read our blog on Datadog’s Security Labs site.