Containers

[NEW] Kubescape now integrates with GitHub Actions

Dec 8, 2022 By ARMO In ARMO

We are happy to announce that Kubescape now integrates with GitHub Actions. This allows users to identify issues as early and as clearly as possible, without ever leaving GitHub. Read all about it 👇

Read Post

ARMO

Read more about [NEW] Kubescape now integrates with GitHub Actions

Dynamic Authorization with Policy-Based Access Management

Dec 8, 2022 By Jeff Broberg In Styra

Traditional or static authorization methods no longer meet the demands of today’s digital business environment. Data breaches are on the rise (a 23% increase in 2021, as per the Identity Theft Resource Center), forcing organizations to re-evaluate their security and compliance practices.

Read Post

Styra

Read more about Dynamic Authorization with Policy-Based Access Management

How Integrating with GCP Benefits Kubernetes Data Protection and Data Migration for GKE

Dec 8, 2022 By Ayushi Raj In CloudCasa

TFiR has produced its brand-new video show called Let’s See. This is the first time that TFiR has come up with a demo show where we will get to see how some of the technologies and products work.

Read Post

CloudCasa

Read more about How Integrating with GCP Benefits Kubernetes Data Protection and Data Migration for GKE

How to Sign Kubernetes using Sigstore

Dec 7, 2022 By Snyk In Snyk

In this livestream we are joined by Adolfo Veytia, Staff Software Engineer at ChainGuard and Tech Lead on the Kubernetes SIG-Release team, as we talk about they were able to tackle signing all of the Kubernetes v1.24 image artifact using Sigstore. We then demonstrate signing an image and vulnerability scan result attestations with Sigstore's cosign utility. Didn't catch the live stream? Ask all of your Snyk questions and we’ll do our very best to answer them in the comment section.

View Video

Snyk

Read more about How to Sign Kubernetes using Sigstore

What is RBAC vs ABAC vs PBAC?

Dec 7, 2022 By Sean Roth In Styra

Setting employee controls for IT to manage is the biggest challenge to cloud-native expansion, according to 64% of the developers surveyed in our 2022 Cloud-Native Alignment report.

Read Post

Styra

Read more about What is RBAC vs ABAC vs PBAC?

Sysdig Secure-Google Chronicle Integration - Why, What and How

Dec 7, 2022 By Durgesh Shukla In Sysdig

Cloud adoption and digital transformation have enlarged attack surfaces that can be exploited by malicious actors to harm your organization. Traditional SIEMs and EDRs fall short as they are not cloud-native and also difficult to scale. Further, there are inherent fixed costs that need to be considered when adopting any modern threat detection apparatus.

Read Post

Sysdig

Read more about Sysdig Secure-Google Chronicle Integration - Why, What and How

OPA Management: Challenges and Opportunities

Dec 6, 2022 By Danny Baier In Styra

The Open Policy Agent (OPA) is a policy engine that brings the speed, reliability and flexibility of decoupled policy as code to a wide range of authorization use cases across the cloud-native ecosystem. OPA is a Cloud Native Computing Foundation (CNCF) graduated project and has become an industry-wide standard for authorization, with several leading enterprises implementing it in their business-critical cloud systems.

Read Post

Styra

Read more about OPA Management: Challenges and Opportunities

Kubernetes Security: CSPM's Blind Spot

Dec 6, 2022 By Amir Kaushanskyt In ARMO

This article focuses on a critical missing component of Cloud Security Posture Management (CSPM): visibility into Kubernetes. Scroll down to read all you need to know about it.

Read Post

ARMO

Read more about Kubernetes Security: CSPM's Blind Spot

Comparing GuardDuty & Falco on EKS

Dec 6, 2022 By Nigel Douglas In Sysdig

Security in cloud providers like AWS is usually the highest priority. With EKS, unlike bring-your-own vanilla Kubernetes instances, you benefit from a data center and network architecture that is built to meet the requirements of the most security-sensitive organizations. To achieve this, one of the best ways is to use all the security layers we are capable of having. In this case, we will explain how to use GuardDuty and Falco to speed up threat detection.

Read Post

Sysdig

Read more about Comparing GuardDuty & Falco on EKS

Discovered new BYOF technique to cryptomining with PRoot

Dec 5, 2022 By Biagio Dipalma In Sysdig

The Sysdig Threat Research Team (TRT) recently discovered threat actors leveraging an open source tool called PRoot to expand the scope of their operations to multiple Linux distributions and simplify their necessary efforts. Typically, the scope of an attack is limited by the varying configurations of each Linux distribution. Enter PRoot, an open source tool that provides an attacker with a consistent operational environment across different Linux distributions, such as Ubuntu, Fedora, and Alpine.

Read Post

Sysdig

Read more about Discovered new BYOF technique to cryptomining with PRoot

Subscribe to Containers

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Containers

[NEW] Kubescape now integrates with GitHub Actions

Dynamic Authorization with Policy-Based Access Management

How Integrating with GCP Benefits Kubernetes Data Protection and Data Migration for GKE

How to Sign Kubernetes using Sigstore

What is RBAC vs ABAC vs PBAC?

Sysdig Secure-Google Chronicle Integration - Why, What and How

OPA Management: Challenges and Opportunities

Kubernetes Security: CSPM's Blind Spot

Comparing GuardDuty & Falco on EKS

Discovered new BYOF technique to cryptomining with PRoot

Monthly Archive

Follow Us