Sysdig Site Search
Understanding and mitigating CVE-2020-8566: Ceph cluster admin credentials leaks in kube-controller-manager log
While auditing the Kubernetes source code, I recently discovered an issue (CVE-2020-8566) in Kubernetes that may cause sensitive data leakage....
Friends don’t let friends Curl | Bash
You know those software installation instructions that tell you to download and run a script directly from the internet, as...
Sysdig Introduces Sysdig Secure 3.0: The Industry’s First Kubernetes-Native Threat Prevention and Incident Response Tool
New features enable enterprises to deploy securely, block threats at runtime, and quickly triage alerts SAN FRANCISCO — Nov. 13,...
Sysdig Announces the Cloud-Native Security Hub is Available
Cloud-Native Security Hub creates a home for cloud-native best practices, rules, and configurations SAN DIEGO, KubeCon + CloudNativeCon — Nov....
Protection From Malicious Python Libraries Jeilyfish and Python3-dateutil
Two malicious Python libraries, jeilyfish (with a capital i and a lowercase L in the original name) and python3-dateutil, were...
Securing the Cloud with End-to-end Detection
In this paper, we examine the multiple layers at which cloud‑based applications and infrastructure are threatened by attacks. We look at how these threat vectors can be detected using Falco, and how Sysdig's platform, built with Falco at its core, brings extra security based on its unique capabilities.
Detecting cryptomining attacks “in the wild”
Cryptomining attacks are becoming more notable in-line with the rise of blockchain and cryptocurrencies, so detecting cryptomining has become a...
MITRE ATT&CK and D3FEND for Cloud and Containers
MITRE ATT&CK and MITRE D3FEND are both frameworks developed by the non-profit organization MITRE, but they serve different purposes. If...
Google Cloud WorkshopLive North America 2023 with Sysdig
Detecting and preventing CVE-2019-3874: where an attacker can circumvent cgroup memory isolation using the SCTP socket buffer using Falco and Sysdig Secure
