⚔THREAT NEWS!⚔ The Sysdig Threat Research Team detected an attack attributed to the TeamTNT. 🚨Once access is gained, the malware 👾 steals credentials using EC2 instance metadata!🚨 Learn how they exploited a ✏WordPress Pod deployed on #K8s cluster: setns.run/3Dx1Z5O

Protect your PHP Websites with CrowdSec, the Open-Source, Participative IPS for Linux linuxtoday.com/developer/prot…

👀 Pod Security graduated to beta in Kubernetes v1.23 so Jim Angel and I wrote a blog to help teach you all about this fantastic workload security enhancement. Check it out kubernetes.io/blog/2021/12/0…

We’re proud to announce we raised $350M at a $2.5B valuation! 🚀 We want to thank our customers and partners for trusting us to secure their cloud and container environments! This milestone is a reflection of the confidence our customers have in us. sysdig.com/blog/ceo-sures…

Want to check if your system is ready for falcosecurity ? Try this script github.com/Issif/falco-dr… and help community by adding more drivers

sysdig.com/blog/exploit-m…

Bad Actor: darryk10 looks into exploiting, detecting, and correcting IAM security misconfigurations admin-magazine.com/Articles/Explo… #security #IAM #cloud #AWS #infrastructure #admin

Security research darryk10 outlines 3 common techniques bad actors use to gain high privileges inside cloud environments. Starting with credentials found online or tricking users in a phishing attack, they then proceed within the account. Learn so you can reduce your own risk!

Capabilities provide a way to limit the level of access a container. However, they are often misconfigured, granting excessive privileges to processes and threads Checkout my new article on how to detect containers' escape capabilities with #Falco sysdig.com/blog/container…

This August at #BlackHatUSA, Alberto Pellitteri and darryk10 will be demoing the process of creating open source falcosecurity plugins for any source. Simplify your life, learn how to create a consistent threat detection language across multiple clouds. okt.to/p0bUzc

Be sure to catch Sysdig engineers darryk10 & Alberto Pellitteri's demo on Day 2 of #BlackHat2022 to learn how to extend falcosecurity with new event sources using Falco Plugins. #ContainerSecurity okt.to/mGWo4i

Learn how to leverage Falco in real breaches! On Aug 11 (10AM) at #BHUSA (Black Hat) Alberto Pellitteri & darryk10 will be demoing the process of creating open source falcosecurity plugins to extend the Falco detection engine to new event sources. okt.to/kBhNOP

Strengthen your threat detection! Aug 11 (10AM) at #BHUSA (Black Hat) Alberto Pellitteri & darryk10 are demoing the process of creating open source falcosecurity plugins. Join to learn the new Falco plugin approach and how to use them when there's a breach. okt.to/08yiX4

Calling all #KubernetesSecurity users at #BHUSA! Catch Sysdig engineers darryk10 & Alberto Pellitteri's live demo on Day 2 of #BlackHat2022 (10am). Learn how to use #Falco plugins to extend the open source falcosecurity detection engine with new event sources. okt.to/QT269S

Bad Actor: darryk10 looks at ways to avoid and detect IAM security holes admin-magazine.com/Archive/2022/6… #security #IAM #confirguration #misconfiguration #EC2 #AWS #cloud

Interested in the #OSS project falcosecurity? See Loris Degioanni's keynote on detecting GitHub security issues with Falco at #CNSCON on 10/25! Also catch darryk10 & Lorenzo Susini's session on using Falco to detect & monitor container escaping techniques: okt.to/WonyXa

Are you attending Kubecon_ NA '22? The Falco community is presenting, "The eye of Falco: you can escape but not hide." Join Lorenzo Susini & darryk10 at #CNSCON Oct. 25 to learn more. Register here: sched.co/1AOkR #opensource

Our threat research team uncovered a massive cryptojacking operation targeting free GitHub and Heroku accounts. Dubbed "freejacking," PURPLEURCHIN is abusing compute allocated for free trial accounts on CI/CD platforms. Click to see what's going on and why you should care!

Happening now: Sysdig security experts & #Falco contributors darryk10 & Lorenzo Susini are teaming up at #CloudNative SecurityCon to explain how to use #CNCF container runtime security tool falcosecurity to detect & monitor container escaping techniques based on capabilities. Kubecon_

Even though I'm posting this to get a 35% off coupon, I cant avoid saying it's freaking cool: lo.cafe/notchnook