hardening - #cybertechtalk

Explore, compromise and harden Kubernetes pods

November 4, 2023 by andriejsazanowicz

By default, many container services run as the privileged root user. Every container is just a running process. Preventing root execution by using non-root containers (configured when the image is built) or a rootless container engine (some container engines run in an unprivileged context rather than using a daemon running as root; for example, podman) limits the … Read more

TheHackersNews.com

New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks
Researchers have discovered a new security vulnerability stemming from a design flaw in the IEEE 802.11 Wi-Fi standard that tricks victims into connecting to a less secure wireless network and eavesdrop on their network traffic. The SSID Confusion attack, tracked as CVE-2023-52424, impacts all operating systems and Wi-Fi clients, including home and mesh networks that are based on
North Korean Hackers Exploit Facebook Messenger in Targeted Malware Campaign
The North Korea-linked Kimsuky hacking group has been attributed to a new social engineering attack that employs fictitious Facebook accounts to targets via Messenger and ultimately delivers malware. "The threat actor created a Facebook account with a fake identity disguised as a public official working in the North Korean human rights field," South Korean cybersecurity company Genians
Researchers Uncover 11 Security Flaws in GE HealthCare Ultrasound Machines
Security researchers have disclosed almost a dozen security flaws impacting the GE HealthCare Vivid Ultrasound product family that could be exploited by malicious actors to tamper with patient data and even install ransomware under certain circumstances. "The impacts enabled by these flaws are manifold: from the implant of ransomware on the ultrasound machine to the access and manipulation of
Cybercriminals Exploiting Microsoft’s Quick Assist Feature in Ransomware Attacks
The Microsoft Threat Intelligence team said it has observed a threat actor it tracks under the name Storm-1811 abusing the client management tool Quick Assist to target users in social engineering attacks. "Storm-1811 is a financially motivated cybercriminal group known to deploy Black Basta ransomware," the company said in a report published on May 15, 2024. The
Google Patches Yet Another Actively Exploited Chrome Zero-Day Vulnerability
Google has rolled out fixes to address a set of nine security issues in its Chrome browser, including a new zero-day that has been exploited in the wild. Assigned the CVE identifier CVE-2024-4947, the vulnerability relates to a type confusion bug in the V8 JavaScript and WebAssembly engine. It was reported by Kaspersky researchers Vasily Berdnikov and Boris

DevOps.com

Building Toward Unified Observability
Observability, AI and automation can help organizations achieve proactive IT management and eschew traditional monitoring. Here’s what’s involved.
The Gift That Keeps On Giving
When one person's code is another person's nightmare.
Three Reasons DevOps Should Consider Rocky Linux 9.4
The new version of Rocky Linux includes security improvements, better cloud images, and the latest developer tools. All those features should interest any DevOps pro.
Advancing Sustainable Practices in Data Centers: Insights from Platform.sh
The environmental impact of data centers is becoming increasingly critical. These facilities, essential to our digital infrastructure, consume vast amounts of energy and contribute significantly to carbon emissions. Clearly, recognizing the urgency of this issue, Platform.sh is pioneering sustainable solutions to mitigate their environmental footprint. By incorporating renewable energy, cutting-edge cooling systems, and robust carbon offset
No Country for No-Code: Are We Heading Towards a Wild West of Software Security?
The specter of an untrained employee creating applications is alarming: No-code/low-code platforms empower employees with no application security knowledge to develop programs that security teams don’t know exist.