Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Containers

panoptica

Webinar | Securing Application Workloads, APIs, and Serverless Functions with Panoptica

Aug 25, 2023 By Shweta Khare In Panoptica
Application architectures have been transformed in recent years. Modern application systems have become more complex with monolithic applications being replaced by more complicated applications based on multiple microservices and stored on cloud platforms. These applications run on new technologies based on Kubernetes, an open-source container orchestration system that automates the deployment, scaling, and management of containerized applications.
Read Post
Snyk

Using JLink to create smaller Docker images for your Spring Boot Java application

Aug 24, 2023 By Brian Vermeer In Snyk

Containers bring new flexibility and agility to software development and deployment. However, they also introduce a new attack surface that malicious actors can exploit. A compromised container can give an attacker access to other containers and even the host system. Smaller images that contain fewer artifacts are already a great help in achieving a smaller attack surface.

Read Post

Introducing Infra as Code Security in The GitGuardian Platform

Aug 24, 2023 By GitGuardian In GitGuardian
We are proud to introduce Infra as Code Security in The GitGuardian Platform. GitGuardian can now automatically scan connected GitHub or GitLab repositories for IaC template files like Terraform and CloudFormation and alert you about any misconfigurations affecting your AWS, Azure, and GCP deployments, your Kubernetes clusters, and Docker containers.
View Video
armo

Kubelet vulnerabilities on Windows nodes: CVE-2023-3676, CVE-2023-3955 and CVE-2023-3893

Aug 23, 2023 By Ben Hirschberg In ARMO
Recently, the Kubernetes Security Response Committee disclosed three interrelated vulnerabilities affecting the Windows versions of Kubelet and the Kubernetes CSI proxy. These vulnerabilities pose a significant risk, allowing even users with limited permissions to escalate their privileges to administrator level on affected nodes.
Read Post
armo

Securing Kubernetes in multi-cloud environments: challenges and best practices

Aug 22, 2023 By Ben Hirschberg In ARMO
Kubernetes has become the de facto platform for orchestrating containerized applications at scale in today’s IT landscape. Its ability to run on various platforms including on-premises, public cloud, and hybrid has made it an essential tool for many organizations. This is particularly true for companies following a multi-cloud strategy, relying on more than one vendor for their cloud computing needs.
Read Post
Snyk

Best practices for building a production-ready Dockerfile for PHP applications

Aug 22, 2023 By James Walker In Snyk

Docker is a containerization platform for bundling your code, dependencies, and runtime environment into self-contained units that run identically in different environments. Dockerizing a PHP application simplifies deployment by packaging the PHP runtime, a web server, and your source code and composer dependencies into a container. Getting started with Docker is easy. However, there are a few pitfalls you need to avoid before you can safely use it in production.

Read Post
sysdig

LABRAT: Stealthy Cryptojacking and Proxyjacking Campaign Targeting GitLab

Aug 17, 2023 By Miguel Hernández In Sysdig

The Sysdig Threat Research Team (TRT) recently discovered a new, financially motivated operation, dubbed LABRAT. This operation set itself apart from others due to the attacker’s emphasis on stealth and defense evasion in their attacks. It is common to see attackers utilize scripts as their malware because they are simpler to create. However, this attacker chose to use undetected compiled binaries, written in Go and.NET, which allowed the attacker to hide more effectively.

Read Post

Combatting Cloud Threats: The Accelerated Attack Speed of 2023 (LIVE)

Aug 16, 2023 By Sysdig In Sysdig
Cloud threats are evolving and attackers are moving faster than ever! Join Sysdig’s Michael Clark (Director, Threat Research) and Anna Belak (Director, Office of Cybersecurity Strategy) LIVE on Linkedin, Twitter, and Youtube, as they discuss key findings from Sysdig’s �������� ������������ ���������� ������������ ������������. From cloud automation as a weapon to software supply chain vulnerabilities — the annual report authored by Sysdig’s Threat Research Team exposes shocking statistics on the evolving tactics of attackers lurking within the clouds.
View Video
armo

Kubernetes 1.28: the security perspective

Aug 14, 2023 By Ben Hirschberg In ARMO
With each release, Kubernetes introduces new features and enhancements to improve the user experience and address the evolving needs of its users. Today’s release is no exception. This blog post delves into the security enhancements introduced in Kubernetes 1.28, providing insights into their significance and impact.
Read Post
sysdig

Google's Vertex AI Platform Gets Freejacked

Aug 14, 2023 By Michael Clark In Sysdig

The Sysdig Threat Research Team (Sysdig TRT) recently discovered a new Freejacking campaign abusing Google’s Vertex AI platform for cryptomining. Vertex AI is a SaaS, which makes it vulnerable to a number of attacks, such as Freejacking and account takeovers. Freejacking is the act of abusing free services, such as free trials, for financial gain. This freejacking campaign leverages free Coursera courses that provide the attacker with no-cost access to GCP and Vertex AI.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.