%term

Detecting AI Agent Lateral Movement in Kubernetes

May 29, 2026 By Yossi Ben Naim In ARMO

An AI agent moving laterally through a Kubernetes cluster does not look like an intrusion. There is no foreign process, no exploit, no dropped binary — just the agent using the identity, network routes, and tools it was handed at deployment to reach targets it was technically allowed to touch. That is the entire problem. The controls you run were built to catch an outsider pivoting from host to host.

Read Post

ARMO

Read more about Detecting AI Agent Lateral Movement in Kubernetes

Protecting Red Hat OpenShift AI with Trilio for Kubernetes: a hands-on lab

May 28, 2026 By Rodolfo Casas In Trilio

A few weeks ago I was on a call with a financial services customer who had moved a credit-decisioning model into production on Red Hat OpenShift AI. They were happy with the platform. They were less happy with the answer they had for a question their risk officer had just asked: “If an attacker encrypts the cluster tomorrow, what do we need to bring back to be inference-ready by Monday morning?” The team started listing the obvious things — the model artifact, the serving endpoint.

Read Post

Trilio

Read more about Protecting Red Hat OpenShift AI with Trilio for Kubernetes: a hands-on lab

Kubernetes Operational Maturity: Secure and Resilient Cluster Federation with Cluster Mesh

May 25, 2026 By Veronika Smolik In Tigera

Practically no one runs a single Kubernetes cluster in production these days. Maybe that’s how it started but data sovereignty requirements, acquisitions, AI initiatives and the need for edge servers, among other considerations, have pulled most enterprises into multi-cluster territory whether they planned for it or not.

Read Post

Tigera

Read more about Kubernetes Operational Maturity: Secure and Resilient Cluster Federation with Cluster Mesh

How to Extend SPIFFE Beyond Kubernetes: Bring Zero Trust Identity to Your VMs

May 21, 2026 By Jeffrey Ellin In Teleport

Our previous post, How to Secure Microservices with SPIFFE and Istio, showed how to secure Kubernetes microservices using Istio policy and SPIFFE identities, with Teleport issuing the identities that the mesh trusts. The question teams face next is: How do you extend that identity-driven security model to workloads outside Kubernetes — such as VMs, edge gateways, and legacy services — without creating a massive certificate-management project?

Read Post

Teleport

Read more about How to Extend SPIFFE Beyond Kubernetes: Bring Zero Trust Identity to Your VMs

Leaked Kubernetes Secrets: Impact Assessment and Mitigation Strategies

May 20, 2026 By Guillaume Valadon In GitGuardian

A single leaked Kubernetes credential rarely stays in the cluster. It opens the registry credentials, private Docker images, and private GitHub repositories behind it. In Q1 2026 alone, our detectors caught close to 2,000 new such leaks on GitHub, 28% valid at leak time.

Read Post

GitGuardian

Read more about Leaked Kubernetes Secrets: Impact Assessment and Mitigation Strategies

AI Is Replacing Security Dashboards (Headless Cloud Security Explained)

May 6, 2026 By Sysdig In Sysdig

AI is changing cloud security—and dashboards might be next to go. In this video, we introduce headless cloud security: a new model where AI agents, not humans, operate security systems. Instead of dashboards and manual triage, security becomes API-driven, automated, and built for autonomous execution. This shift redefines DevSecOps, cloud security, and AI security workflows—moving humans from operators to orchestrators.

View Video

Sysdig

Read more about AI Is Replacing Security Dashboards (Headless Cloud Security Explained)

DevOps Services: What They Are, How They Work, and Why Your Business Needs Them

Apr 28, 2026 By SecuritySenses In SecuritySenses

The way businesses build and deliver software has changed dramatically over the past decade. Gone are the days when development teams would work in isolation for months before handing off a product to operations staff for deployment. Today's competitive market demands speed, reliability, and continuous improvement - and that is exactly what DevOps services are designed to deliver.

Read Post

SecuritySenses

Read more about DevOps Services: What They Are, How They Work, and Why Your Business Needs Them

How Hackers Get In: What Is a Vulnerability? (Containers Explained)

Apr 24, 2026 By Sysdig In Sysdig

A vulnerability is a weakness in software—and in containerized environments, even one small flaw can open the door. From buggy code to outdated images and misconfigurations, risk can exist at every layer of the stack. And if a vulnerability is already known… attackers often already know how to exploit it. In this video, we break down: Next up: What is a CVE?

View Video

Sysdig

Read more about How Hackers Get In: What Is a Vulnerability? (Containers Explained)

How Healthcare Platform Teams Should Secure AI Agents on Kubernetes

Apr 23, 2026 By Shauli Rozen In ARMO

The surgeon is thirty-two minutes into a procedure. The ambient scribe pod listening to the operating room is mid-encounter — transcribing, retrieving prior chart context, drafting the operative note for post-op sign-off. At the same moment, your SOC gets an alert: anomalous tool invocation from that pod, elevated egress volume, behavioral deviation from the agent’s baseline.

Read Post