#kubernetes-security

[ follow ]
#runtime-security #ebpf #container-monitoring #linux-syscalls #containers #container-isolation #kubernetes
DevOps
fromInfoQ
1 week ago

Kernel-Level Ground Truth: Why eBPF is Replacing User-Space Agents for Security Observability

Application-level logging can be disabled by a compromised process, so security visibility must not rely on attacker cooperation.
eBPF kernel-level syscall probing remains effective even with root in containers, and disabling it is significantly harder than killing a user-space agent.
Consolidating user-space security agents with an eBPF agent can reduce security CPU use by 60–80% and lower telemetry volume via kernel-side filtering.
Phased eBPF rollout—observe, then alert, then enforce—prevents disruptive enforcement that can break critical services.
DevOps
fromInfoQ
6 months ago

Cloud Security Challenges in the AI Era - How Running Containers and Inference Weaken Your System

Containers package code and its dependencies but do not provide strong isolation, requiring additional runtime and platform security measures for Kubernetes environments.
DevOps
fromMedium
7 months ago

My Kubestronaut journey

Completed all CNCF Kubernetes certifications between Oct 2024 and Jan 2025, achieving high scores and earning Kubestronaut recognition.
Information security
fromTheregister
7 months ago

'Delightful' Red Hat OpenShift AI bug allows full takeover

A severe OpenShift AI vulnerability allows an authenticated low-privilege user to escalate to cluster administrator, risking data theft, service disruption, and full platform compromise.
[ Load more ]