Containers

Unified Controls | Tigera

May 10, 2021 By Tigera In Tigera

Organizations are scaling Kubernetes deployments with container platforms running on a mix of on-prem, cloud, and multi-cloud infrastructure. However, not all users are taking a standardized approach to building multiple clusters on a common distribution and on a single infrastructure with common security tools.

View Video

Tigera

Read more about Unified Controls | Tigera

Open Policy Agent: The Top 5 Kubernetes Admission Control Policies

May 4, 2021 By Torin Sandall In Styra

Kubernetes developers and platform engineers are typically under a metric ton of pressure to keep app deployments humming at a brisk pace. With the scale and power of Kubernetes, this can feel daunting. Maybe you’re a retailer launching a new e-commerce feature for a huge sale. Maybe you’re a bank that’s scaling a finance app worldwide. In either case, compromises always get made in the interest of speed and schedules.

Read Post

Styra

Read more about Open Policy Agent: The Top 5 Kubernetes Admission Control Policies

Securing AWS Fargate workloads: Meeting File Integrity Monitoring (FIM) requirements

May 4, 2021 By Alba Ferri In Sysdig

Securing AWS Fargate serverless workloads can be tricky as AWS does not provide much detail about the internal workings. After all… it’s not your business, AWS manages the scaling of underlying resources for you. :) While the security and stability of Fargate’s system is an inherent feature, Fargate follows a shared responsibility model, where you still have to take care of securing those parts specific to your application..

Read Post

Sysdig

Read more about Securing AWS Fargate workloads: Meeting File Integrity Monitoring (FIM) requirements

AWS Fargate runtime security - Implementing File Integrity Monitoring with Sysdig

May 4, 2021 By Sysdig In Sysdig

Thanks to serverless you can focus on your apps, instead of your infrastructure. Take AWS Fargate as an example. A service where you can deploy containers as Tasks, without worrying what physical machine they run on. However, without access to the host How can you detect suspicious activity? Like, file changes on your Fargate tasks? Sysdig provides runtime detection and response to secure Fargate serverless containers.

View Video

Sysdig

Read more about AWS Fargate runtime security - Implementing File Integrity Monitoring with Sysdig

What Docker runtime deprecation means for your Kubernetes

Apr 28, 2021 By David Bisson In AT&T Cybersecurity

On December 8, 2020, Kubernetes released version 1.20—the third and final release of the popular container orchestration platform in 2020. Kubernetes noted in a blog post that the version contained 42 enhancements. Of those enhancements, 16 entered into alpha, while the remainder moved to beta or graduated to stable at 15 and 11, respectively.

Read Post

AT&T Cybersecurity

Read more about What Docker runtime deprecation means for your Kubernetes

Exploiting and detecting CVE-2021-25735: Kubernetes validating admission webhook bypass

Apr 28, 2021 By Stefano Chierici In Sysdig

The CVE-2021-25735 medium-level vulnerability has been found in Kubernetes kube-apiserver that could bypass a Validating Admission Webhook and allow unauthorised node updates. The kube-apiserver affected are: You are only affected by this vulnerability if both of the following conditions are valid: By exploiting the vulnerability, adversaries could bypass the Validating Admission Webhook checks and allow update actions on Kubernetes nodes.

Read Post

Sysdig

Read more about Exploiting and detecting CVE-2021-25735: Kubernetes validating admission webhook bypass

Our $188M funding round fuels our mission to help customers confidently run modern cloud applications

Apr 28, 2021 By Suresh Vasudevan In Sysdig

Today, I am excited to share that we secured $188M in a new funding round, at a valuation of $1.19B (read more here). At the outset, I want to thank our employees, partners, investors and most importantly, our customers for this important milestone. The funding follows a year of unmatched innovation that led to accelerated revenue growth, installed base growth, and rapid community adoption of our open source projects.

Read Post

Sysdig

Read more about Our $188M funding round fuels our mission to help customers confidently run modern cloud applications

Why We Need to Rethink Authorization for Cloud Native

Apr 27, 2021 By Tim Hinrichs In Styra

Companies have moved to cloud native software development so that they can increase development speed, improve product personalization, and differentiate their buyer experiences in order to innovate and win more customers. In doing so, enterprises have also redefined how they build and run software at a fundamental level.

Read Post

Styra

Read more about Why We Need to Rethink Authorization for Cloud Native

Kubernetes Quick Hits: Use SecurityContext to run containers with a read-only filesystem

Apr 22, 2021 By Snyk In Snyk

In this episode of our Kubernetes Quick Hits video series, Eric Smalling–Sr. In less than four minutes, you’ll learn how to use the readOnlyRootFilesystem control to keep your containers immutable and safe from modification by hackers and misbehaving code. Snyk helps software-driven businesses develop fast and stay secure. In addition to container security scans, Snyk can continuously monitor to find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about Kubernetes Quick Hits: Use SecurityContext to run containers with a read-only filesystem

Kubernetes Security and Observability

Apr 21, 2021 By Tigera

Through practical guidance and best practice recommendations, this book will help you understand why cloud-native applications require a modern approach to security and observability practices, and how to adopt a holistic security and observability strategy for building and securing cloud-native applications running on Kubernetes.

Get EBook

Tigera

Read more about Kubernetes Security and Observability

Subscribe to Containers

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Containers

Unified Controls | Tigera

Open Policy Agent: The Top 5 Kubernetes Admission Control Policies

Securing AWS Fargate workloads: Meeting File Integrity Monitoring (FIM) requirements

AWS Fargate runtime security - Implementing File Integrity Monitoring with Sysdig

What Docker runtime deprecation means for your Kubernetes

Exploiting and detecting CVE-2021-25735: Kubernetes validating admission webhook bypass

Our $188M funding round fuels our mission to help customers confidently run modern cloud applications

Why We Need to Rethink Authorization for Cloud Native

Kubernetes Quick Hits: Use SecurityContext to run containers with a read-only filesystem

Kubernetes Security and Observability

Monthly Archive

Follow Us