Threat Post

‘Azurescape’ Kubernetes Attack Allows Cross-Container Cloud Compromise

A chain of exploits could allow a malicious Azure user to infiltrate other customers’ cloud instances within Microsoft’s container-as-a-service offering. A critical security vulnerability allowing ...
Dark Reading

6 Best Practices to Ensure Kubernetes Security Meets Compliance Regulations

Businesses are moving fast to modernize application development, but Kubernetes security has taken a back seat in many cases. While that deprioritization is increasingly risky, security strategies to ...
Dark Reading

Container Verification Bug Allows Malicious Images to Cloud Up Kubernetes

A high-severity security vulnerability in the Kyverno admission controller for container images could allow malicious actors to import a raft of nefarious code into cloud production environments. The ...
Infosecurity-magazine.com

#HowTo: Implement Continuous Compliance for Kubernetes

To meet the increasingly strict security guidelines of regulations like SOC 2, PCI DSS, GDPR, HIPAA and others, the highly dynamic nature of Kubernetes environments requires a carefully planned – and ...
Infosecurity-magazine.com

Researchers Find First Major Kubernetes Flaw

Security researchers have patched a critical security flaw in popular container orchestration tool Kubernetes which could allow third parties to remotely control targeted systems. “This vulnerability ...