alcide

Alcide Blog

Cloud-native Security Provider

Nitzan Niv


Recent Posts

New Kubernetes API Server Vulnerability Enables Privileges Escalation (CVE-2020-8559)

Jul 19, 2020 12:56:39 PM / by Nitzan Niv posted in kubernetes, privilege escalation, API Server

0 Comments

 

A security issue was discovered in the kube-apiserver that could enable a privilege escalation from a compromised node.

Read More

New Kubernetes Control Plane Vulnerability (CVE-2020-8555)

Jun 2, 2020 11:27:05 AM / by Nitzan Niv posted in alcide advisor, Kubernetes security, CVE, vulnerability, kaudit

0 Comments

 

Read More

New Kubernetes Vulnerabilities: CVE-2020-8551, CVE-2020-8552

Mar 24, 2020 7:09:17 AM / by Nitzan Niv posted in kubernetes, CVE, Runtime

0 Comments

Two security issues were discovered in Kubernetes and disclosed on March 23, 2020 that could lead to a recoverable denial of service in a Kubernetes cluster.

Read More

Kubernetes Audit: Making Log Auditing a Viable Practice Again.

Oct 31, 2019 9:26:57 AM / by Nitzan Niv posted in kubernetes, logs, audit, foresnsics

0 Comments

In the security world, one of the most established methods to identify that a system was compromised, abused or mis-configured is to collect logs of all the activity performed by the system’s users and automated services, and to analyze these logs.

Read More

Breaching the Cyber Defenses of Cloud Deployments with DNS Tunneling

Jan 23, 2019 6:33:48 AM / by Nitzan Niv posted in cloud security, kubernetes, workload protection, microservices, devops, dns tunneling

0 Comments

 

Tunneling is the practice of embedding messages of one network protocol within messages of a different network protocol. In a security context, tunneling is a way for an attacker to bypass security boundaries like the perimeter firewall of a cloud deployment by encapsulating malicious traffic within permitted traffic. This blog explores the challenges of detecting DNS tunneling, and offers a solution to how you can detect a DNS tunneling attack on you cloud environments.

Read More

Subscribe to Email Updates