Sysdig Site Search
CVE-2025-32955: Security mechanism bypass in Harden-Runner Github Action
The Sysdig Threat Research Team (TRT) has discovered CVE-2025-32955, a now-patched vulnerability in Harden-Runner, one of the most popular GitHub...
Cloud invaders: Spotting compromised users before it’s too late
Identities have become one of the most common ways modern threat actors gain a foothold in the cloud. From stolen...
SCARLETEEL 2.0: Fargate, Kubernetes, and Crypto
SCARLETEEL, an operation reported on by the Sysdig Threat Research Team last February, continues to thrive, improve tactics, and steal...
Cloud Infrastructure Entitlements Management (CIEM) with Sysdig Secure
Discover what CIEM Security is and how easy it is to implement with Sysdig Secure for cloud. Over-permissioned accounts and...
What’s new in Sysdig – March 2022
Welcome to another iteration of What’s New in Sysdig in 2022! The “What’s new in Sysdig” blog has fallen to...
MITRE ATT&CK framework for container runtime security with Falco.
MITRE ATT&CK is a comprehensive knowledge base and complex framework of over 200 techniques that adversaries may use over the...
Introducing Cloud Identity Insights for Sysdig Secure
In recent years, almost every major cloud breach has been marked by overly permissive credentials, followed by lateral movement and...
What’s New in Sysdig – October 2023
“What’s New in Sysdig” is back with the October 2023 edition! My name is Zain Ghani, based in Austin, Texas,...
LABRAT: Stealthy Cryptojacking and Proxyjacking Campaign Targeting GitLab
The Sysdig Threat Research Team (TRT) recently discovered a new, financially motivated operation, dubbed LABRAT. This operation set itself apart...