Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Sysdig

sysdig

Cloud Defense in Depth: Lessons from the Kinsing Malware

Jul 4, 2023 By Nigel Douglas In Sysdig

In the face of persistent data breaches and escalating cyber threats, organizations are compelled to prioritize cloud defense in depth. These measures are indispensable for protecting critical assets and upholding the integrity of cloud-based systems. By establishing a comprehensive security plan, organizations can effectively convey their commitment to security and lay a solid foundation for a resilient and secure cloud environment.

Read Post

Vulnerabilities: The Gateway to Cloud Breaches

Jun 15, 2023 By Sysdig In Sysdig
Things move fast in the cloud and cyber attackers are always on the lookout for vulnerabilities that they can exploit to gain access. In this short video, see the challenges faced by security teams in managing the ever growing list of vulnerabilities. Runtime insights provides the intelligence required to shift left - find and prevent vulnerabilities earlier, and shield right - protect what’s running in production.
View Video
sysdig

KeePass CVE-2023-32784: Detection of Processes Memory Dump

Jun 13, 2023 By Miguel Hernández In Sysdig

During May, a new vulnerability CVE-2023-32784 was discovered that affected KeePass. KeePass is a popular open source password manager which runs on Windows, Mac, or Linux. The vulnerability allows the extraction of the master key in cleartext from the memory of the process that was running. The master key will allow an attacker to access all the stored credentials. We strongly recommend updating to KeePass 2.54 to fix the vulnerability.

Read Post
sysdig

Look both ways: Preventing suspicious behavior with end-to-end detections

Jun 7, 2023 By Nigel Douglas In Sysdig

In the rapidly evolving digital landscape, malicious actors constantly adapt their strategies to infiltrate our systems. Traditional endpoint detection mechanisms are no longer sufficient to protect our applications and workloads against advanced threats. To effectively address this concern, it has become imperative to embrace a broader approach to threat detection. This entails a paradigm shift towards incorporating both agent-based and agentless detection methods.

Read Post
sysdig

Respond Instantly to Kubernetes Threats with Sysdig Live

Jun 7, 2023 By Víctor Jiménez Cerrada In Sysdig

Discover how Sysdig Secure’s new “Kubernetes Live” informs of your Kubernetes security posture at a glance. Investigating a security incident may be a tennis match. Sometimes, you find yourself jumping from one window to another: one place for runtime events, another one for vulnerabilities, another one for logs. Gathering and correlating all the information available can be a time consuming task, but it’s the only way of having a clear view of what is going on.

Read Post
sysdig

Sysdig Enriched Process Trees, an Innovative Approach to Threat Detection

Jun 7, 2023 By Víctor Jiménez Cerrada In Sysdig

Discover how Sysdig Secure’s new Process Tree feature improves threat investigation. Imagine you’re investigating a security related detection, the investigation was triggered by the execution of stat/etc/shadow in one of your containers. Is this a sign of a legitimate activity, such as a developer debugging an app, or a sign that your container has been compromised? It depends on the context.

Read Post

Sysdig Enriched Process Trees, an Innovative Approach to Threat Detection

Jun 7, 2023 By Sysdig In Sysdig
Discover how Sysdig Secure’s new Process Tree feature improves threat investigation. In order to speed up the investigation of security events, Sysdig Secure now includes a process tree showing the attack journey from user to process, including process lineage, container and host information, malicious user details, and impact. In Linux systems, a process tree refers to the hierarchical representation of running processes on a system. It depicts the parent-child relationship between processes all the way to the root.
View Video

Responding Instantly to Kubernetes Threats with Sysdig Live

Jun 7, 2023 By Sysdig In Sysdig
Discover how Sysdig Secure’s new “Kubernetes Live” informs of your Kubernetes security posture at a glance. The new Live feature allows you to evaluate and respond instantly to threats. It understands and dynamically maps the live infrastructure, workloads, and relationships between them, compared to static CSPMs or context-blind EDR products. Kubernetes Live simplifies investigation processes by offering a unified view Sysdig Secures Kubernetes related data. It aggregates information, from detection, to vulnerabilities to network access, into a single platform for easier oversight.
View Video

Sysdig Launches Vulnerability Overview Landing Page

Jun 5, 2023 By Sysdig In Sysdig
Introducing Sysdig Secure's latest feature - Vulnerability Overview, a comprehensive tool enhancing vulnerability management across Pipeline, Image Registry, and Runtime stages. This feature offers the capability for efficient filtering, aggregation, and triage from a single pane of glass, prioritizing critical vulnerabilities and strengthening your security posture.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.