Tel Aviv, Israel
Jun 3, 2020   |  By Natan Yellin
The recent MiTM attack disclosed was a very unusual one in the Container Security world. All at the same time, Kubernetes, Docker, and Calico announced security bulletins related to IPv6 Rogue Router Advertisements. There are several security bulletins here because this isn’t a single vulnerability in one product - rather, multiple independent CNIs are all vulnerable. IPv6 Router Advertisements are a fairly obscure topic, yet this vulnerability is definitely worth understanding.
Jun 2, 2020   |  By Nitzan Niv
A security issue was discovered in Kubernetes and disclosed on June 1, 2020 as CVE-2020-8552. The vulnerability enables an attacker to gain access to data from services that are connected to the host network of the cluster’s manager, and although the attack is not simple to execute, it can remotely bypass authorization controls and break confidentiality.
May 31, 2020   |  By Karine Regev
Welcome to the K8s Breakfast Club, our vlog series featuring conversations with inspiring peers and friends from the cloud-native ecosystem. This week, Alcide CTO and co-founder Gadi Naor is giving containers-expert and segment lead at AWS, Vipin Mohan, a call to see what’s currently happening in his container world. In this session we spoke with Vipin about serverless, unikernels and DevSecOps.
May 27, 2020   |  By Rachel Cheyfitz
Last month, the Microsoft Azure Security Center published a fully detailed Threat Matrix for Kubernetes. This article identifies attack vectors unique to a Kubernetes environment. This important contribution is derived from the more generalized MITRE ATT&CK® framework that offers a complex matrix of common attack vectors.
May 21, 2020   |  By Gadi Naor
GitOps is a paradigm that puts Git at the heart of building and operating cloud- native applications by using Git as the single source of truth. GitOps empowers developers to perform what used to fall under IT operations. GitOps, as a development pattern, gained a fair share of popularity in recent times as it emphasizes declaratively expressing infrastructure and application configuration within Git repositories GitOps.
Jan 7, 2020   |  By Alcide
What happens if a service exposes a NodePort? Or if a service Load Balancer is enabled? The rise of Kubernetes brought tons of developers to jump on the Kubernetes bandwagon, and yet, Kubernetes in production is still relatively new to most. Our top ten recommendations come from our real-world experience with configurations that made it to production but shouldn't have.
Dec 19, 2019   |  By Alcide
"44% of respondents are using Kubernetes in production today, compared to 20% in 2018. 53% use Kubernetes to improve application velocity and time-to-market, while 54% are still reluctant to claim they are comfortable running multiple Kubernetes clusters."
Apr 11, 2019   |  By Alcide
There are entire tool ecosystem, methodologies and endless resources to guide companies along their DevOps journey: asset Management, monitoring, and CI/CD integration to name a few. This ebook will take you through the KPIs you should either evaluate or revisit and examine what you should consider when measuring your DevOps success.
Mar 30, 2019   |  By Alcide
The benefits of the hybrid cloud and DevOps are both well known. But what happens when these two models intersect? Often DevOps and Security teams struggle to account for the added complexity introduced by hybrid configurations. But that needn't be so.
Mar 30, 2019   |  By Alcide
In order to help enterprises address cloud security issues effectively, platforms and stacks have emerged to automate, orchestrate, and simplify cloud security processes, providing greater visibility into them across the entire organisation.
Jul 30, 2018   |  By Amazon Web Services
Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to run Kubernetes on AWS. Join AWS and our container ecosystem partners for a deep dive on Amazon EKS and explore solutions that help extend the capabilities of Kubernetes on AWS.
Jun 14, 2018   |  By Microsoft for Startups
Learn more about startup Alcide, a platform designed to bring security to the cloud.