Stefano Chierici

Blogs by Stefano Chierici

Filter By:

Cloud Security, Threat Research

Lambda Threat – Best Practices for Lambda Security

Log4j CVE exploit and mitigation

Threat Research

Exploiting, Mitigating, and Detecting CVE-2021-44228: Log4j Remote Code Execution (RCE)

Muhstik malware

Threat Research, Kubernetes & Container Security

Hands-On Muhstik Botnet: crypto-mining attacks targeting Kubernetes

Artistic representation of the Sysrv-Hello Botnet puppeteering WordPress pods. Clearly a reference to the puppeteer in the Fantastic 4.

Threat Research, Kubernetes & Container Security, Open Source

THREAT ALERT: Crypto miner attack – Sysrv-Hello Botnet targeting WordPress pods

MITRE for cloud iaas helps you detect threats for your cloud infrastructure. Hacker trying to access to a cloud infrastructure, but it's been secured following the MITRE ATT&CK MATRIX for cloud

Cloud Security, Compliance

What is the MITRE ATT&CK Framework for Cloud? | 10 TTPs You should know of

Falco and Prometheus can help detect new crypto mining attack targeting Kubeflow and TensorFlow

Threat Research, Cloud Security, Kubernetes & Container Security, Open Source

Detecting new crypto mining attack targeting Kubeflow and TensorFlow

Threat Research, Kubernetes & Container Security, Open Source

Detecting and Mitigating CVE-2021-25737: EndpointSlice validation enables host network hijack

Open Source, Kubernetes & Container Security, Threat Research

Exploiting and detecting CVE-2021-25735: Kubernetes validating admission webhook bypass

Cloud Security, Sysdig Features

How to detect EC2 Serial Console enabled

Threat Research, Kubernetes & Container Security, Open Source

Mitigating CVE-2021-20291: DoS affecting CRI-O and Podman

Threat Research, Kubernetes & Container Security

Detecting and mitigating Apache Unomi’s CVE-2020-13942 – Remote Code Execution (RCE)

Compliance, Kubernetes & Container Security, Open Source

Detecting MITRE ATT&CK: Privilege escalation with Falco

Back to Blog