Operations | Monitoring | ITSM | DevOps | Cloud

Tigera

tigera

How Calico Cloud's runtime defense mitigates Kubernetes MITM vulnerability CVE-2020-8554

Apr 6, 2021 By Manoj Ahuje In Tigera

Since the release of CVE-2020-8554 on GitHub this past December, the vulnerability has received widespread attention from industry media and the cloud security community. This man-in-the-middle (MITM) vulnerability affects Kubernetes pods and underlying hosts, and all Kubernetes versions—including future releases—are vulnerable. Despite this, there is currently no patch for the issue.

Read Post
tigera

TeamTNT: Latest TTPs targeting Kubernetes (Q1-2021)

Mar 31, 2021 By Manoj Ahuje In Tigera

In April 2020, MalwareHunterTeam found a number of suspicious files in an open directory and posted about them in a series of tweets. Trend Micro later confirmed that these files were part of the first cryptojacking malware by TeamTNT, a cybercrime group that specializes in attacking the cloud—typically using a malicious Docker image—and has proven itself to be both resourceful and creative.

Read Post
tigera

Honeypods: Applying a Traditional Blue Team Technique to Kubernetes

Mar 17, 2021 By Garwood Pang In Tigera

The use of honeypots in an IT network is a well-known technique to detect bad actors within your network and gain insight into what they are doing. By exposing simulated or intentionally vulnerable applications in your network and monitoring for access, they act as a canary to notify the blue team of the intrusion and stall the attacker’s progress from reaching actual sensitive applications and data.

Read Post
tigera

Tigera to Provide Native Kubernetes Support for Mixed Windows/Linux Workloads on Microsoft Azure

Mar 2, 2021 By John Armstrong In Tigera

Tigera, in collaboration with Microsoft, is thrilled to announce the public preview of Calico for Windows on Azure Kubernetes Service (AKS). While Calico has been available for self-managed Kubernetes workloads on Azure since 2018, many organizations are migrating their .NET and Windows workloads to the managed Kubernetes environment offered by AKS.

Read Post
tigera

Industry-First Pay-as-you-go SaaS Platform for Kubernetes Security and Observability

Feb 16, 2021 By Amit Gupta In Tigera

We are excited to introduce Calico Cloud, a pay-as-you-go SaaS platform for Kubernetes security and observability. With Calico Cloud, users only pay for services consumed and are billed monthly, getting immediate value without upfront investment.

Read Post

Protecting Against the Unpatched Kubernetes Vulnerability (CVE-2020-8554)

Feb 2, 2021 By Tigera In Tigera
CVE-2020-8554 is a vulnerability that allows Kubernetes Services to intercept cluster traffic to any IP address. Users who can manage services can exploit the vulnerability to carry out man-in-the-middle (MITM) attacks against pods and nodes in the cluster. All Kubernetes versions including the latest release (v1.20) are vulnerable to this attack. If your cluster is multi-tenant, or allows unprivileged users to create and update services, you are impacted.
View Video
tigera

Kubernetes Observability Challenges: The Need for an AI-Driven Solution

Feb 1, 2021 By Ratan Tipirneni In Tigera

Kubernetes provides abstraction and simplicity with a declarative model to program complex deployments. However, this abstraction and simplicity create complexity when debugging microservices in this abstract layer. The following four vectors make it challenging to troubleshoot microservices.

Read Post

Calico Enterprise Multi Cluster Management - Federated Identity and Services

Jan 30, 2021 By Tigera In Tigera
Managing multiple Kubernetes clusters can become time consuming and complex. Calico Enterprise can help with built in multi-cluster management capabilities to simplify deployment and ongoing operations, including securing interactions between the clusters, and providing cross-cluster service discovery.
View Video

Enterprise Security Controls for Kubernetes

Jan 21, 2021 By Tigera In Tigera
In this talk, we will explore how to meet common enterprise security control needs when running Kubernetes. We will look at a range of common enterprise security needs and how you can meet these with standard Kubernetes primitives and open source projects such as Calico, or take it a step further with the additional features of Calico Enterprise.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.