Tag: kubernetes

Rewriting the Rules of Platform Engineering with IDPs and EKS

Nov 21, 2025 5:49 AM

Tags: cloud, framework, kubernetes, service, software
Rewriting the Rules of Platform Engineering with IDPs and EKS

Nov 21, 2025 5:49 AM

Tags: cloud, framework, kubernetes, service, software
Trust Beyond Containers: Identity and Agent Security Lessons from KubeCon”¯2025

Nov 20, 2025 4:49 PM

Tags: ai, container, governance, identity, kubernetes, service

From secure service mesh rollouts to AI cluster hardening, see how KubeCon + CloudNativeCon NA 2025 redefined identity, trust, and governance in Kubernetes environments. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/11/trust-beyond-containers-identity-and-agent-security-lessons-from-kubecon-2025/
Von flach zu segmentiert Sicherheit in der K8s-Umgebung

Nov 17, 2025 5:49 AM

Tags: kubernetes

Kubernetes oder kurz K8s entwickelt sich rasch zur bevorzugten Plattform vieler Unternehmen. CNCF berichtet, dass über 80 Prozent der Unternehmen es bereits in der Produktion einsetzen, und die Zahlen steigen weiter [1]. Neben der Leistungsfähigkeit von K8s bei der Automatisierung, Verwaltung und Skalierung der Anwendungsbereitstellung gibt es jedoch auch Sicherheitsrisiken und Herausforderungen. Laut… First seen…
Kubernetes overlords decide Ingress NGINX isn’t worth saving

Nov 14, 2025 5:49 AM

Tags: flaw, kubernetes

Maintenance to end next year after ‘helpful options’ became ‘serious security flaws’ First seen on theregister.com Jump to article: www.theregister.com/2025/11/14/nginx_retirement/
Dangerous runC Flaws Could Allow Hackers to Escape Docker Containers

Nov 13, 2025 9:49 PM

Tags: cloud, container, docker, flaw, hacker, kubernetes, vulnerability

New runC vulnerabilities allow potential container escapes and host takeover, putting Docker, Kubernetes, and cloud-native environments at risk. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/runc-vulnerability-container-risk/
Researchers Uncover Critical runC Bugs Allowing Full Container Escape

Nov 11, 2025 9:20 AM

Tags: container, control, cve, docker, exploit, flaw, kubernetes, vulnerability

Security researchers have revealed three serious vulnerabilities in runC, the Open Container Initiative (OCI)-compliant runtime that powers platforms such as Docker and Kubernetes, which could allow attackers to break container isolation and gain control of the host system. The flaws, tracked as CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881, stem from weaknesses in how runC manages temporary bind…
Researchers Uncover Critical runC Bugs Allowing Full Container Escape

Nov 11, 2025 9:20 AM

Tags: container, control, cve, docker, exploit, flaw, kubernetes, vulnerability

Security researchers have revealed three serious vulnerabilities in runC, the Open Container Initiative (OCI)-compliant runtime that powers platforms such as Docker and Kubernetes, which could allow attackers to break container isolation and gain control of the host system. The flaws, tracked as CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881, stem from weaknesses in how runC manages temporary bind…
Hackers Abuse runc Tool to Escape Containers and Compromise Hosts

Nov 10, 2025 8:19 AM

Tags: access, container, cve, cyber, docker, flaw, hacker, kubernetes, tool, vulnerability

Three critical vulnerabilities in runc, the widely-used container runtime that powers Docker and Kubernetes, have been disclosed, allowing attackers to break out of container isolation and gain root access to host systems. The flaws, identified as CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881, were revealed by a SUSE researcher on November 5, 2025. CVE ID Affected Versions Fixed…
Hackers Abuse runc Tool to Escape Containers and Compromise Hosts

Nov 10, 2025 8:19 AM

Tags: access, container, cve, cyber, docker, flaw, hacker, kubernetes, tool, vulnerability

Three critical vulnerabilities in runc, the widely-used container runtime that powers Docker and Kubernetes, have been disclosed, allowing attackers to break out of container isolation and gain root access to host systems. The flaws, identified as CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881, were revealed by a SUSE researcher on November 5, 2025. CVE ID Affected Versions Fixed…
Hackers Abuse runc Tool to Escape Containers and Compromise Hosts

Nov 10, 2025 8:19 AM

Tags: access, container, cve, cyber, docker, flaw, hacker, kubernetes, tool, vulnerability

Three critical vulnerabilities in runc, the widely-used container runtime that powers Docker and Kubernetes, have been disclosed, allowing attackers to break out of container isolation and gain root access to host systems. The flaws, identified as CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881, were revealed by a SUSE researcher on November 5, 2025. CVE ID Affected Versions Fixed…
Dangerous runC flaws could allow hackers to escape Docker containers

Nov 9, 2025 5:20 PM

Tags: access, container, docker, exploit, flaw, hacker, kubernetes, vulnerability

Three newly disclosed vulnerabilities in the runC container runtime used in Docker and Kubernetes could be exploited to bypass isolation restrictions and get access to the host system. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/dangerous-runc-flaws-could-allow-hackers-to-escape-docker-containers/
Cybersecurity Snapshot: AI Will Take Center Stage in Cyber in 2026, Google Says, as MITRE Revamps ATTCK Framework

Nov 7, 2025 8:20 PM

Tags: access, ai, android, antivirus, api, apple, attack, authentication, business, cio, cisa, ciso, cloud, communications, container, control, credentials, cryptography, cve, cyber, cybercrime, cybersecurity, data, defense, detection, docker, endpoint, exploit, firewall, flaw, framework, google, governance, group, guide, hacker, identity, infrastructure, injection, Internet, kubernetes, leak, least-privilege, linux, malicious, malware, mfa, microsoft, mitigation, mitre, mobile, network, offense, oracle, programming, resilience, risk, risk-management, service, skills, soc, social-engineering, software, sophos, spam, strategy, supply-chain, switch, tactics, technology, threat, tool, unauthorized, update, vulnerability, windows, zero-day

Learn why Google expects AI to transform cyber defense and offense next year, and explore MITRE’s major update to the ATT&CK knowledge base. We also cover a new McKinsey playbook for agentic AI security, along with the latest on Microsoft Exchange protection and the CIS Benchmarks. Key takeaways Google is forecasting that AI will kick…
Cybersecurity Snapshot: AI Will Take Center Stage in Cyber in 2026, Google Says, as MITRE Revamps ATTCK Framework

Nov 7, 2025 8:20 PM

Tags: access, ai, android, antivirus, api, apple, attack, authentication, business, cio, cisa, ciso, cloud, communications, container, control, credentials, cryptography, cve, cyber, cybercrime, cybersecurity, data, defense, detection, docker, endpoint, exploit, firewall, flaw, framework, google, governance, group, guide, hacker, identity, infrastructure, injection, Internet, kubernetes, leak, least-privilege, linux, malicious, malware, mfa, microsoft, mitigation, mitre, mobile, network, offense, oracle, programming, resilience, risk, risk-management, service, skills, soc, social-engineering, software, sophos, spam, strategy, supply-chain, switch, tactics, technology, threat, tool, unauthorized, update, vulnerability, windows, zero-day

Learn why Google expects AI to transform cyber defense and offense next year, and explore MITRE’s major update to the ATT&CK knowledge base. We also cover a new McKinsey playbook for agentic AI security, along with the latest on Microsoft Exchange protection and the CIS Benchmarks. Key takeaways Google is forecasting that AI will kick…
KubeCon + CloudNativeCon North America 2025, Must-See Sessions

Nov 5, 2025 7:20 PM

Tags: cloud, conference, kubernetes, software, technology, usa
KubeCon + CloudNativeCon North America 2025, Must-See Sessions

Nov 5, 2025 7:20 PM

Tags: cloud, conference, kubernetes, software, technology, usa
KubeCon + CloudNativeCon North America 2025, Must-See Sessions

Nov 5, 2025 7:20 PM

Tags: cloud, conference, kubernetes, software, technology, usa
Zero Networks erweitert Kubernetes-Mikrosegmentierung

Nov 5, 2025 10:20 AM

Tags: kubernetes, network

Herkömmliche Kubernetes-Mikrosegmentierungsoptionen sind kompliziert zu implementieren und zu verwalten. Sie bieten zudem nur teilweise eine Abdeckung oder erfordern komplexe architektonische Änderungen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/zero-networks-erweitert-kubernetes-mikrosegmentierung/a42620/
Securing the Mission: Why Container Deployment Scanning Is Essential for the DoD

Oct 28, 2025 8:26 PM

Tags: cloud, compliance, container, control, cyber, data, defense, fedramp, framework, government, intelligence, kubernetes, network, risk, risk-assessment, risk-management, service, software, tool, unauthorized, vulnerability, vulnerability-management

As DoD agencies accelerate cloud-native adoption under DOGE efficiency mandates, securing containerized workloads is essential to mission assurance. Learn why deployment-time scanning and admission controller enforcement are critical to reduce risk, meet compliance, and modernize security Key takeaways: Deployment-time scanning ensures containers are evaluated in the context of the environment they’ll be running in, not…
Wie Cloud- und Container-Umgebungen effektiv geschützt werden können

Oct 24, 2025 2:26 PM

Tags: cloud, container, kubernetes, risk

Container und Kubernetes haben die Entwicklung und Bereitstellung moderner Anwendungen grundlegend verändert. Ihre Vorteile liegen auf der Hand: Skalierbarkeit, Flexibilität und Geschwindigkeit. Doch diese Vorteile bringen auch neue Risiken mit sich. Mit der steigenden Zahl von Containern wächst auch die Angriffsfläche und damit wiederum die Anforderungen an Sicherheitskonzepte, die über klassische Ansätze hinausgehen müssen. […]…
F5 BIG-IP Breach: 44 CVEs That Need Your Attention Now

Oct 17, 2025 12:07 AM

Tags: access, attack, breach, cisa, cloud, crowdstrike, cve, cvss, cyber, cybersecurity, data, data-breach, detection, edr, endpoint, exploit, government, Hardware, infrastructure, intelligence, Internet, kubernetes, malicious, mitigation, monitoring, network, risk, software, supply-chain, technology, theft, threat, tool, update, vulnerability, vulnerability-management

Partnering with an EDR vendor after a nation-state has already stolen your source code isn’t innovation, it’s a gamble. You don’t build a fire extinguisher while the house is burning. You find every spark before it becomes the next inferno. Key takeaways: F5’s BIG-IP is used to secure everything from government agencies to critical infrastructure. …
F5 BIG-IP Breach: 44 CVEs That Need Your Attention Now

Oct 17, 2025 12:07 AM

Tags: access, attack, breach, cisa, cloud, crowdstrike, cve, cvss, cyber, cybersecurity, data, data-breach, detection, edr, endpoint, exploit, government, Hardware, infrastructure, intelligence, Internet, kubernetes, malicious, mitigation, monitoring, network, risk, software, supply-chain, technology, theft, threat, tool, update, vulnerability, vulnerability-management

Partnering with an EDR vendor after a nation-state has already stolen your source code isn’t innovation, it’s a gamble. You don’t build a fire extinguisher while the house is burning. You find every spark before it becomes the next inferno. Key takeaways: F5’s BIG-IP is used to secure everything from government agencies to critical infrastructure. …
Introducing MAESTRO: A framework for securing generative and agentic AI

Oct 15, 2025 2:54 PM

Tags: ai, api, attack, banking, business, cloud, compliance, container, control, data, detection, endpoint, fintech, framework, fraud, GDPR, governance, identity, infrastructure, injection, kubernetes, LLM, malicious, mitre, monitoring, network, nist, PCI, radius, risk, saas, service, supply-chain, threat, tool, unauthorized

System boundary: MAESTRO reviews focus on models, AI agents, data flows, CI/CD pipelines, supporting tools and third-party APIs. Broader IT security hygiene (patching, identity governance, endpoint protection) is assumed to be managed by existing programs.Assumptions: organizations have the security baseline configurations and compliance, such as ISO 27XXX, in place. MAESTRO builds on these baselines and…
What to look for in a data protection platform for hybrid clouds

Oct 13, 2025 9:23 AM

Tags: access, advisory, ai, attack, automation, backup, breach, business, cisco, cloud, compliance, computing, control, corporate, data, defense, encryption, endpoint, framework, gartner, google, governance, government, group, guide, ibm, identity, infrastructure, intelligence, Internet, iot, kubernetes, law, malware, metric, microsoft, monitoring, network, oracle, privacy, ransomware, regulation, risk, risk-assessment, saas, service, software, technology, threat, tool, veeam, vmware, vulnerability, zero-trust

hybrid cloud data protection buyer’s guide today!] In this buyer’s guide Data protection for hybrid clouds explainedWhy hybrid clouds need data protectionWhat to look for in a data protection platform for hybrid cloudsMajor trends in data protection for hybrid cloudsLeading vendors for data protection of hybrid cloudsWhat to ask before buying data protection for hybrid…
What to look for in a data protection platform for hybrid clouds

Oct 13, 2025 9:23 AM

Tags: access, advisory, ai, attack, automation, backup, breach, business, cisco, cloud, compliance, computing, control, corporate, data, defense, encryption, endpoint, framework, gartner, google, governance, government, group, guide, ibm, identity, infrastructure, intelligence, Internet, iot, kubernetes, law, malware, metric, microsoft, monitoring, network, oracle, privacy, ransomware, regulation, risk, risk-assessment, saas, service, software, technology, threat, tool, veeam, vmware, vulnerability, zero-trust

hybrid cloud data protection buyer’s guide today!] In this buyer’s guide Data protection for hybrid clouds explainedWhy hybrid clouds need data protectionWhat to look for in a data protection platform for hybrid cloudsMajor trends in data protection for hybrid cloudsLeading vendors for data protection of hybrid cloudsWhat to ask before buying data protection for hybrid…
What to look for in a data protection platform for hybrid clouds

Oct 13, 2025 9:23 AM

Tags: access, advisory, ai, attack, automation, backup, breach, business, cisco, cloud, compliance, computing, control, corporate, data, defense, encryption, endpoint, framework, gartner, google, governance, government, group, guide, ibm, identity, infrastructure, intelligence, Internet, iot, kubernetes, law, malware, metric, microsoft, monitoring, network, oracle, privacy, ransomware, regulation, risk, risk-assessment, saas, service, software, technology, threat, tool, veeam, vmware, vulnerability, zero-trust

hybrid cloud data protection buyer’s guide today!] In this buyer’s guide Data protection for hybrid clouds explainedWhy hybrid clouds need data protectionWhat to look for in a data protection platform for hybrid cloudsMajor trends in data protection for hybrid cloudsLeading vendors for data protection of hybrid cloudsWhat to ask before buying data protection for hybrid…
Kubernetes kicks down Azure Front Door

Oct 11, 2025 12:23 PM

Tags: kubernetes, microsoft

This time outage was not actually Microsoft’s fault First seen on theregister.com Jump to article: www.theregister.com/2025/10/09/kubernetes_azure_outage/
Top 5 Hard-Earned Lessons from the Experts on Managing Kubernetes

Oct 9, 2025 7:25 AM

Tags: cloud, infrastructure, kubernetes
Don’t Let Your Cloud Security Catch a Bad Case of Permission Creep

Oct 7, 2025 5:35 PM

Tags: access, attack, breach, cloud, compliance, control, data, exploit, governance, iam, identity, international, Internet, kubernetes, least-privilege, mfa, risk, service, software, technology, threat, tool, vulnerability

Cloud security teams are often blind to one of the biggest threats to cloud environments: a web of over-privileged identities that create pathways for attackers. Learn how to regain control of your cloud identities by automating the enforcement of least privilege across your environment. Key takeaways The gradual accumulation of excessive and unused cloud permissions,…
Don’t Let Your Cloud Security Catch a Bad Case of Permission Creep

Oct 7, 2025 5:35 PM

Tags: access, attack, breach, cloud, compliance, control, data, exploit, governance, iam, identity, international, Internet, kubernetes, least-privilege, mfa, risk, service, software, technology, threat, tool, vulnerability

Cloud security teams are often blind to one of the biggest threats to cloud environments: a web of over-privileged identities that create pathways for attackers. Learn how to regain control of your cloud identities by automating the enforcement of least privilege across your environment. Key takeaways The gradual accumulation of excessive and unused cloud permissions,…