Elevate Your Linux Cloud Security with Linux Security - Page 2

Discover Cloud Security News

Threat Actors Use AWS SSM Agent as a Remote Access Trojan

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Threat actors have been observed using Amazon Web Services (AWS) 's System Manager (SSM) agent as a Remote Access Trojan (RAT) on Linux and Windows machines.

Brittany Day
Aug 03, 2023

Cilium 1.14 Expands Networking Beyond Kubernetes, Offers Higher Speeds

Cilium, an open-source networking, security and observability project, has released version 1.14 with an array of connectivity, security and observability updates. The Cilium 1.14 update also introduces new mesh capabilities, high-speed networking and security enhancements.

Brittany Day
Jul 29, 2023

Python-Based PyLoose Fileless Attack Targets Cloud Workloads for Cryptocurrency Mining

A new fileless attack dubbed PyLoose has been observed striking cloud workloads with the goal of delivering a cryptocurrency miner, new findings from Wiz reveal.

Brittany Day
Jul 12, 2023

What eBPF Means for Container Threat Detection

With eBPF monitoring container activity from the kernel layer, many of the challenges associated with observability in the cloud are solved.

Brittany Day
May 06, 2023

14 Kubernetes and Cloud Security Challenges and How to Solve Them

A recent report entitled Cloud Native and Kubernetes Security Predictions 2023 underscores the rapidly evolving landscape of Kubernetes and cloud security, emphasizing the need for organizations to stay informed and adopt comprehensive security solutions to protect their digital assets.

Brittany Day
May 06, 2023

Kubernetes vs. Docker: Exploring the Synergy in Containerization

Learn about the advantages of using Kubernetes and Docker together, including enhanced security. "Kubernetes and Docker offer security features such as network isolation, access controls, and image signing. These features help secure containerized applications and protect sensitive data."

Brittany Day
Apr 10, 2023

Kubernetes Architecture and its Security

Kubernetes is an open-source container orchestration platform that provides an efficient and scalable way to manage containerized workloads and services. The platform is based on a distributed architecture that enables it to manage and scale containerized applications across multiple nodes in a cluster. It plays a vital role in ensuring data security in containerized environments, providing "multiple layers of security measures" to protect the data.

Brittany Day
Apr 10, 2023

Amazon Linux 2023, a Cloud-Optimized Linux Distro, Is Now Available

Earlier this week, Amazon announced the availability of Amazon Linux 2023, its third-generation Linux distribution. With this distribution, Amazon is promising three benefits: a high-security standard, a predictable lifecycle, and deterministic updates.

Brittany Day
Mar 23, 2023

IBM's mainframe operating system upgrade will embrace AI

IBM said this week it will soon roll out an AI-infused, hybrid-cloud oriented version of its z/OS mainframe operating system.

Brittany Day
Mar 03, 2023

How to Build The Right Platform for Kubernetes

Whether you go with a cloud provider or go it alone, you need to plan the right architecture for your Kubernetes infrastructure.

Brittany Day
Mar 02, 2023

Microsoft Makes Azure Kubernetes Service Secure To Run Multi-Tenant Workloads

Last week Microsoft launched a new feature that lets customers run modern applications on Azure Kubernetes Service (AKS) in an isolated and secure form. Initially announced at the last KubeCon, the feature is currently available in public preview.

Brittany Day
Feb 28, 2023

Top Takeaways from First CloudNativeSecurityCon

The Cloud Native Computing Foundation (CNCF) early this month in Seattle hosted the first standalone CloudNativeSecurityCon (CNSCon) North America 2023. The event drew more than 800 attendees and offered 70 sessions. In her keynote, CNCF Executive Director Priyanka Sharma described it as the first open source, vendor-neutral, practitioner-driven conference for security.

Brittany Day
Feb 22, 2023

EmojiDeploy Attack Chain Targets Misconfigured Azure Service

Multiple misconfigurations in a service that underpins many Azure features could have allowed an attacker to remotely compromise a cloud user's system.

Brittany Day
Jan 26, 2023

Don’t Forget Open Source Software (OSS) when Assessing Cloud App Security

The software development process is getting quicker. Devops teams are under increased pressure to go to market, and they’re able to work quickly, thanks in part to open-source software (OSS) packages.

Brittany Day
Jan 24, 2023

Consider Open Source Software While Evaluating The Security Of Cloud Applications

The pace of software development is accelerating. Devops teams are under more pressure to launch products rapidly, and they are able to do so in part because of open-source software (OSS) tools.

Brittany Day
Jan 17, 2023

Kinsing Malware Targets Kubernetes

Kinsing is an old-school Linux/Unix Executable and Link format (ELF) malware program that runs a cryptominer and attempts to spread itself to other containers and hosts.

Brittany Day
Jan 16, 2023

Microsoft: Kubernetes Clusters Hacked in Malware Campaign via PostgreSQL

The Kinsing malware is now actively breaching Kubernetes clusters by leveraging known weaknesses in container images and misconfigured, exposed PostgreSQL containers.

Brittany Day
Jan 11, 2023

4 Ways to Use Kernel Security Features for Process Monitoring

The large attack surface of Kubernetes’ default pod provisioning is susceptible to critical security vulnerabilities, some of which include malicious exploits and container breakouts. I believe one of the most effective workload runtime security measures to prevent such exploits is layer-by-layer process monitoring within the container.

Brittany Day
Jan 06, 2023

Kubernetes as-a-Service, Security Issues and Skills Shortages -- Container Predictions for 2023

Containers have become increasingly popular in recent years, they can be spun up quickly and offer developers the opportunity to deliver projects faster as well as gains in agility, portability and improved lifecycle management.

Brittany Day
Jan 02, 2023

What Sysadmins Want to Know about OpenShift and Kubernetes in 2022

The Enable Sysadmin community continues to answer key questions about OpenShift and Kubernetes. Another year has gone by, and what a year it's been! We've had tons of news in the Kubernetes and OpenShift world, and an increasing number of companies are adopting this technology, which is dominating the container-orchestration market. Last year, I wrote an article about 2021's OpenShift and Kubernetes highlights, and guess what: This is the list for the year 2022! Once again, the Enable Sysadmin community did not fail to contribute their diverse and expert knowledge. Have fun with this selection of Enable Sysadmin's top articles of 2022 about Kubernetes and OpenShift Container Platform (OCP).

Brittany Day
Dec 29, 2022

Cloud Security

A Linux Admin's Guide to Tackling Emerging Cloud-Native Security Risks

Azure Linux 3.0: A Significant Leap Forward for Microsoft’s Cloud Ecosystem

Navigating the Security Challenges of Containerization with Anchore