Tigera

Exploring intrusion detection techniques in cloud native environments - Garwood Pang, Tigera

Jun 11, 2021 By Tigera In Tigera

As more production workloads migrated to the cloud, the need for Intrusion Detection Systems(IDS) grew to meet compliance and security needs. With the number of workloads in each cluster, IDS needs to be efficient to not take up the shared resources. Techniques such as packet inspection and web application firewalls provide a solid defense against threats and by leveraging the cluster's network control pane, we are able to selectively choose vulnerable workloads and provide an easy way to trace back to the origin of the attack.

View Video

Tigera

Read more about Exploring intrusion detection techniques in cloud native environments - Garwood Pang, Tigera

Beyond the network: Next Generation Security and Observability with eBPF - Shaun Crampton, Tigera

Jun 11, 2021 By Tigera In Tigera

Learn how eBPF will bring a richer picture of what's going on in your cluster, without changing your applications. With eBPF we can safely collect information from deep within your applications, wherever they interact with the kernel. For example, collecting detailed socket statistics to root-cause network issues, or pinpointing the precise binary inside a container that made a particular request for your audit trail. This allows for insights into the behavior (and security) of the system that previously would have needed every process to be (manually) instrumented.

View Video

Tigera

Read more about Beyond the network: Next Generation Security and Observability with eBPF - Shaun Crampton, Tigera

Join Us for a fireside chat on ensuring adequate security & compliance for cloud native applications

Jun 11, 2021 By Tigera In Tigera

View Video

Tigera

Read more about Join Us for a fireside chat on ensuring adequate security & compliance for cloud native applications

Cyber-security challenges in Kubernetes environments: A Panel Discussion

Jun 11, 2021 By Tigera In Tigera

View Video

Tigera

Read more about Cyber-security challenges in Kubernetes environments: A Panel Discussion

Threats targeting Kubernetes and Defences

Jun 11, 2021 By Tigera In Tigera

Attackers are continuously evolving their techniques to target Kubernetes. They are actively using Kubernetes and Docker functionality in addition to traditional attack surfaces to compromise, gain required privileges and add a backdoor entry to the clusters. A combination of Kubernetes security and observability tools is required to ensure the cloud infrastructure monitoring and lockdown and to enable DevSecOps teams with the right tools for the job.

View Video

Tigera

Read more about Threats targeting Kubernetes and Defences

Securing Kubernetes workloads at Discover Financial Services

Jun 11, 2021 By Tigera In Tigera

It’s a daunting task starting down the path to securing your workloads running on Kubernetes in the Cloud. There are no shortages of vendors with great tools in the Cloud security space. There is a multitude of domains that must be accounted for, along with internal challenges in bringing an organization along into new ways of thinking. This talk will focus on Discover’s Cloud security journey, with an overview of how the program has evolved over the last 4 years, key capabilities & concepts that have been embraced and challenges faced.

View Video

Tigera

Read more about Securing Kubernetes workloads at Discover Financial Services

CVE-2021-31440: Kubernetes container escape using eBPF

Jun 9, 2021 By Manoj Ahuje In Tigera

In a recent post by ZDI, researchers found an out-of-bounds access flaw (CVE-2021-31440) in the Linux kernel’s (5.11.15) implementation of the eBPF code verifier: an incorrect register bounds calculation occurs while checking unsigned 32-bit instructions in an eBPF program. The flaw can be leveraged to escalate privileges and execute arbitrary code in the context of the kernel.

Read Post

Tigera

Read more about CVE-2021-31440: Kubernetes container escape using eBPF

Unified Controls | Tigera

May 10, 2021 By Tigera In Tigera

Organizations are scaling Kubernetes deployments with container platforms running on a mix of on-prem, cloud, and multi-cloud infrastructure. However, not all users are taking a standardized approach to building multiple clusters on a common distribution and on a single infrastructure with common security tools.

View Video

Tigera

Read more about Unified Controls | Tigera

How Calico Cloud's runtime defense mitigates Kubernetes MITM vulnerability CVE-2020-8554

Apr 6, 2021 By Manoj Ahuje In Tigera

Since the release of CVE-2020-8554 on GitHub this past December, the vulnerability has received widespread attention from industry media and the cloud security community. This man-in-the-middle (MITM) vulnerability affects Kubernetes pods and underlying hosts, and all Kubernetes versions—including future releases—are vulnerable. Despite this, there is currently no patch for the issue.

Read Post

Tigera

Read more about How Calico Cloud's runtime defense mitigates Kubernetes MITM vulnerability CVE-2020-8554

TeamTNT: Latest TTPs targeting Kubernetes (Q1-2021)

Mar 31, 2021 By Manoj Ahuje In Tigera

In April 2020, MalwareHunterTeam found a number of suspicious files in an open directory and posted about them in a series of tweets. Trend Micro later confirmed that these files were part of the first cryptojacking malware by TeamTNT, a cybercrime group that specializes in attacking the cloud—typically using a malicious Docker image—and has proven itself to be both resourceful and creative.

Read Post

Tigera

Read more about TeamTNT: Latest TTPs targeting Kubernetes (Q1-2021)

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Tigera

Exploring intrusion detection techniques in cloud native environments - Garwood Pang, Tigera

Beyond the network: Next Generation Security and Observability with eBPF - Shaun Crampton, Tigera

Join Us for a fireside chat on ensuring adequate security & compliance for cloud native applications

Cyber-security challenges in Kubernetes environments: A Panel Discussion

Threats targeting Kubernetes and Defences

Securing Kubernetes workloads at Discover Financial Services

CVE-2021-31440: Kubernetes container escape using eBPF

Unified Controls | Tigera

How Calico Cloud's runtime defense mitigates Kubernetes MITM vulnerability CVE-2020-8554

TeamTNT: Latest TTPs targeting Kubernetes (Q1-2021)

Monthly Archive

Follow Us