Security Advisor Alert: Fortinet Vulnerabilities Actively Exploited
The high severity of these vulnerabilities requires timely action to prevent their exploitation by malicious actors. If you own any of the devices...
Blog
Microsoft Exchange Vulnerability: The Importance of Early Detection
Von Javier Perez, Suleiman Mahmoud and Sinan Sekerci
In recent weeks, we have seen first-hand the importance of having early detection capabilities, the correct implementation of security measures,...
Phone number recycling, a process that affects the privacy of Facebook accounts
Nowadays, for most of us, smartphones have become a vital device, something that we have at hand almost all the time. They come with a phone number...
Abusing exposed Docker Registry APIs
Much has been said recently about the abuse of Docker APIs exposed to the internet. These references all talk about the main Docker API that...
Dropbox Escalation of Privileges to SYSTEM on Windows
In January of this year we found an EoP (Escalation of Privileges) or LPE (Local Privilege Escalation) in the Dropbox Windows application. The bug was...
Attacking Biometric Systems with 3D Printing
Humans have used features such as face, voice, and gait for thousands of years to recognize each other, but only recently, humans have started using...
Kubernetes Network Policies for Pods and Namespaces Isolation
A network policy is a specification of how groups of pods are allowed to communicate with each other and other network endpoints. The Kubernetes...
Kubernetes Security Context and Policies
The previous articles about Docker security have discussed many security features that can be applied at container's runtime. Those features, such as...
Kubernetes API authorization using RBAC (Role-based Access Control)
In the previous article we talked about authentication in Kubernetes using TLS certificates. Once the user or service account is authenticated, the...
Kubernetes API authentication using TLS Certificates
In a Kubernetes cluster, the kube-apiserver is the main component of the Control Plane, all the actions that occur within the cluster go through this...
