Kubernetes use is rising rapidly: 58% more respondents than last year - 78% of this years’ respondents - reported in the 2019 CNCF (Cloud Native Computing Foundation) survey that they use Kubernetes today. With numbers like those, it looks like everyone is headed towards the cloud.
Securing Kubernetes Deployments From Runway To Take-off
Sep 24, 2020 8:38:51 AM / by Rachel Cheyfitz posted in kubernetes, Kubernetes security, Advisor, Runtime, sKan, kaudit
New Kubernetes Node Storage-based DoS Vulnerability [CVE-2020-8557]
Jul 16, 2020 10:44:47 AM / by Gadi Naor posted in devsecops, kubernetes, devops, network security, Kubernetes security, Advisor, CVE, vulnerability
Vulnerability Description and Impact
Mitigate Attack Vectors with Alcide Kubernetes Security Platform
May 27, 2020 8:07:50 AM / by Rachel Cheyfitz posted in cloud security, security services, kubernetes, devops, alcide advisor, network security, Kubernetes security, Advisor, Runtime, SaaS
Last month, the Microsoft Azure Security Center published a fully detailed Threat Matrix for Kubernetes. This article identifies attack vectors unique to a Kubernetes environment. This important contribution is derived from the more generalized MITRE ATT&CK® framework that offers a complex matrix of common attack vectors.
Introducing sKan: Security Hardening and Best Practices for K8s Configuration Files
Apr 20, 2020 7:08:36 AM / by Alon Berger posted in Kubernetes security, Advisor, sKan
Last week we released sKan: a new CI scanner for DevOps and developers that scans K8s deployment files for security drifts.
Scan for HIPAA vulnerabilities in your environment. For free.
Apr 2, 2020 9:00:00 AM / by Karine Regev posted in Kubernetes security, Advisor, HIPAA, SaaS
When it comes to personal data, an individual's health records are right up there as being amongst the most sensitive of data. Protecting it from being accidentally or purposely leaked or misused, is of the highest importance; both from an individual's perspective, but also from a governmental perspective.
Are You a Kubernetes Pros or a Kubernetes Novice?
Feb 27, 2020 2:57:46 AM / by Karine Regev posted in Kubernetes security, Advisor
I'm a fan of online surveys. It's a fun, simple, and a great way to check the pulse of our community.
We launched our first survey back in 2018, where we looked at the state of securing cloud workloads. We then continued the motion in 2019 with The Kubernetes Adoption and Usage survey and most recently with the Helm survey, still open for feedback.
In this blog post I'd like to focus on the 2019 Alcide Kubernetes survey. Based on 200 responses from Dev, Ops, Security and Cloud Architects, our survey reveals that 45% of companies are now running Kubernetes in production, while 37% are leveraging hybrid or multi-cloud environments for their Kubernetes clusters.
Kubernetes Orphaned Resources
Nov 13, 2019 8:16:37 AM / by Guy Moyal posted in cloud security, kubernetes, devops, alcide advisor, Kubernetes security, Advisor
The Kubernetes container-orchestration system provides a platform for automating deployments
and operations of application containers across clusters of hosts by defining resources as
manageable Objects. Some of these resources can be managed by other resources automatically
while others can be referenced through metadata fields within the object.