Blogs by Stefano Chierici

All Topics Cloud Security (8) Compliance (2) Kubernetes & Container Security (13) Monitoring (0) Open Source (8) Sysdig Features (4) Threat Research (18)
Showing 12 of 23
Kubernetes & Container Security, Cloud Security, Sysdig Features, Threat Research

CSI Container: Can you DFIR it?
Attacker exploit IAM misconfiguration
Cloud Security

Exploiting IAM security misconfigurations
Analysis of supply chain attacks
Threat Research, Cloud Security, Kubernetes & Container Security, Sysdig Features

Analysis on Docker Hub malicious images: Attacks through public container images
Cloud Security

Cloud lateral movement: Breaking in through a vulnerable container
container escape - Falco detect capabilities
Kubernetes & Container Security, Threat Research

How to detect the containers’ escape capabilities with Falco
CVE-2022-22965 Spring4Shell
Threat Research

Critical Vulnerability in Spring Core: CVE-2022-22965 a.k.a. Spring4Shell
Threat Research

Detecting and Mitigating CVE-2022-22963: Spring Cloud RCE Vulnerability
Detect okta suspicious events with Falco and Sysdig
Threat Research, Sysdig Features

Detect malicious activity in Okta logs with Falco and Sysdig okta-analyzer
CVE-2022-0811 CRI-O
Threat Research, Kubernetes & Container Security, Open Source

Mitigating CVE-2022-0811: Arbitrary code execution affecting CRI-O
CVE-2022-0492 Detect and mitigate privilege escalation
Threat Research

CVE-2022-0492: Privilege escalation vulnerability causing container escape
Cloud Security, Threat Research

Lambda Threat – Best Practices for Lambda Security
Log4j CVE exploit and mitigation
Threat Research

Exploiting, Mitigating, and Detecting CVE-2021-44228: Log4j Remote Code Execution (RCE)
1 2
Back to blog