Kubernetes
Kubernetes RCE Vulnerability Allows Remote Code Execution
Tomer Peled, an Akamai cybersecurity security researcher, recently discovered a Kubernetes RCE vulnerability that allows threat actors to remotely execute code on Windows endpoints. Not only this but the threat actors can ...
What AI Doesn’t Know About Kubernetes in Production
As artificial intelligence continues to permeate various industries, it seems logical to incorporate it into our production operations. However, as Eldad Assis, a senior DevOps architect at JFrog, discovered, there are still ...
Securing open-source infrastructure with OSTIF
The Open Source Technology Improvement Fund (OSTIF) counters an often overlooked challenge in the open-source world: the same software projects that uphold today’s internet infrastructure are reliant on, in OSTIF’s words, a ...
GKE Case Highlights Risks of Attackers Chaining Vulnerabilities
Palo Alto Network’s cybersecurity recently outlined two vulnerabilities it found in Google Kubernetes Engine (GKE) that, individually, don’t represent much of a threat. However, if a threat actor who already had access ...
Cloud-Native Security: A Tipping Point for Security Teams’ Productivity
cloud-native application development has caused a veritable maelstrom for security teams ...
Why Mutual TLS (Mtls) Is Critical For Securing Microservices Communications In A Service Mesh
The rise of containerization and Kubernetes has catalyzed a widespread adoption of microservices architecture for packaging and deploying cloud-native applications. According to a recent report, 85% of surveyed companies said they are ...
Introducing AppViewX KUBE+ – A Certificate Lifecycle Management Solution Built To Secure Your Kubernetes Environments
It is impossible to discuss today’s enterprise application landscape without mentioning Cloud, DevOps, and containerization. These innovative approaches are transforming how applications are built, deployed, and run in the Cloud. As containers ...
Konstellation: A Tool for RBACpacking in Kubernetes
The author presented this paper and corresponding tool at Black Hat: Arsenal 2023 on August 10, 2023. For a more general overview of Konstellation and its capabilities vis a vis Kubernetes RBAC, ...
Introducing Konstellation, for Kubernetes RBAC Analysis
Praetorian is excited to announce the upcoming release of Konstellation, a new open-source tool that simplifies Kubernetes role-based access control (RBAC) data collection and security analysis. Join us at Black Hat Arsenal ...
5 Challenges Of Managing Digital Certificates In The Kubernetes Environment
Organizations are embracing new cloud-native container services to deliver applications faster and boost business agility. The adoption of containers and container-orchestration systems like Kubernetes has been fueled by the shift towards modern, ...