Introduction The Amazon Foundational Technical Review (FTR) is a framework that enables AWS Partners to detect and remediate issues in solutions and products. It focuses on quality, reliability, and safety and outlines the best practices to meet the set requirements....

Introduction Oracle Container Engine for Kubernetes (OKE) is a managed Kubernetes service for operating containerized applications at scale while reducing the time, cost, and operational burden of managing the complexities of Kubernetes infrastructure. Container...

Introduction With the recent pace of innovation in cloud and cloud-native adoption, there has been a huge technological shift in the way applications are developed and deployed. This technological shift requires provisioning, managing, securing, and scaling cloud...

Introduction This BPFDoor malware leverages reverse shell method. Such a flaw in an application allows an attacker to run remote code on the victim's computer to start a shell session. The attacker just needs to watch for incoming connections on the right port when...

Splunk offers an extensible data platform that supports shared data from any environment to provide all teams in an organization the visibility they need for end-to-end observability, with context to every interaction in business processes.[pac_divi_table_of_contents...

ARM support for KubeArmor Why was the ARM support considered? KubeArmor is increasingly deployed in near-edge and far-edge scenarios for enhancing security for IoT/Edge aspects. KubeArmor has added support to handle the characteristics of edge scenarios such as:...

Earlier this quarter, highly sophisticated phishing attacks were performed on over 135+ organizations. In this blog, we will discuss different phishing mechanisms that were leveraged by attackers to gain unauthorized access. We discuss this specifically in the context...

KubeArmor provides runtime protection for Kubernetes and other cloud-native workloads. It is a cloud-native runtime security enforcement system that restricts the behavior (such as process execution, file access, and networking operation) of containers and nodes at...

Log4J - CVE-2021-44228 remediation policy for K8s clusters Introduction On December 9th, 2021, the world was made aware of a new vulnerability identified as CVE-2021-44228, affecting the Apache Java logging package log4j. This vulnerability earned a severityscore of...