Kubernetes security can be frustrated by its built-in customizability and the fact that no default settings will be secure for every situation. Users must configure certain functionality in order to secure their cluster. This means that the engineers responsible for deploying the Kubernetes platform need to understand how poor and incomplete configuration can lead to …
Breach path prediction is a way to group a sequence of individual violations or weaknesses into a “breach path” which an attacker can use to compromise your system. The idea is that individual weaknesses may not be exploitable or severe on their own, and identifying breach paths enables organizations to recognize the issues that may …
Breach path prediction: Breaking Kill Chains with Policy as Code Read More »
I’m excited to announce our latest research, Accurics’ Cloud Cyber Resilience Report! To better understand the challenges faced by modern cloud native development teams, Accurics researched security risks present in actual cloud native configurations. By analyzing hundreds of cloud native infrastructure deployments across Accurics customers and community users, we found a number of well-known historical …
Evolving Risks, Insecure Defaults, Watering Hole Threats in the Cloud Read More »
Kubernetes security is complex to manage and is constantly changing. In our last blog, we addressed how a security vulnerability related to the Kubernetes snapshot controller can be proactively mitigated using policy as code. This time we discuss a different vulnerability covered in this issue, which describes how an adversary can intercept traffic in a …
Kubernetes security: preventing man in the middle with policy as code Read More »
Get the latest posts in your inbox
