Breach path prediction is a way to group a sequence of individual violations or weaknesses into a “breach path” which an attacker can use to compromise your system.  The idea is that individual weaknesses may not be exploitable or severe on their own, and identifying breach paths enables organizations to recognize the issues that may …

Breach path prediction: Breaking Kill Chains with Policy as Code Read More »

I’m excited to announce our latest research, Accurics’ Cloud Cyber Resilience Report! To better understand the challenges faced by modern cloud native development teams, Accurics researched security risks present in actual cloud native configurations. By analyzing hundreds of cloud native infrastructure deployments across Accurics customers and community users, we found a number of well-known historical …

Evolving Risks, Insecure Defaults, Watering Hole Threats in the Cloud Read More »

Kubernetes security is complex to manage and is constantly changing. In our last blog, we addressed how a security vulnerability related to the Kubernetes snapshot controller can be proactively mitigated using policy as code. This time we discuss a different vulnerability covered in this issue, which describes how an adversary can intercept traffic in a …

Kubernetes security: preventing man in the middle with policy as code Read More »

Digital transformation and cloud migration have been top of mind for most organizations over the past few years, given the competitive and economic pressures faced by all industries.    Established business models and security processes continue to be disrupted, leading to not only technical challenges but identity crises and lots of soul searching.  The arrival …

Self-healing Cloud Infrastructure for Tomorrow’s Applications Read More »