Infosecurity.US

Information Security & Occasional Forays Into Adjacent Realms

  • Web Log

Security BSides Sofia 2022 - Anton Sankov's 'Securing Kubernetes With Open Policy Agent' →

May 17, 2022 by Marc Handelman in Security BSides Sofia, Republic of Bulgaria, NATO Member State, United States Allies, Security Conferences, Education, Security, Cybersecurity Education, Security Education, Container Security

Our thanks to Security BSides Sofia for publishing their Presenter’s Security BSides Sofia 2022 superb security videos on the organization’s’ YouTube channel.

May 17, 2022 /Marc Handelman
Security BSides Sofia, Republic of Bulgaria, NATO Member State, United States Allies, Security Conferences, Education, Security, Cybersecurity Education, Security Education, Container Security

OWASP® Global AppSec US 2021 Virtual - Michele Chubirka's 'Container Security: It’s All About The Supply Chain' →

May 01, 2022 by Marc Handelman in OWASP®, Global AppSec US ’21, AppSec Conferences, Container Security, Education, Security, Cybersecurity Education, Security Education

Our thanks to both the OWASP® Foundation and the OWASP Global AppSec US 2021 Virtual Conference for publishing their well-crafted application security videos on the organization’s’ YouTube channel.

May 01, 2022 /Marc Handelman
OWASP®, Global AppSec US ’21, AppSec Conferences, Container Security, Education, Security, Cybersecurity Education, Security Education

OWASP® Global AppSec US 2021 Virtual - Rory McCune's 'Cluster Wrangling: How To Make Kubernetes Clusters Secure And Usable' →

April 24, 2022 by Marc Handelman in OWASP®, Global AppSec US ’21, AppSec Conferences, Education, Security, Cybersecurity Education, Kubernetes Security, Container Security

Our thanks to both the OWASP® Foundation and the OWASP Global AppSec US 2021 Virtual Conference for publishing their well-crafted application security videos on the organization’s’ YouTube channel.

April 24, 2022 /Marc Handelman
OWASP®, Global AppSec US ’21, AppSec Conferences, Education, Security, Cybersecurity Education, Kubernetes Security, Container Security

DEF CON 27, Packet Hacking Village - Jay Beale's 'Attacking And Defending Kubernetes' →

March 10, 2020 by Marc Handelman in Conferences, DEF CON 27, Education, Information Security, Container Security

Thanks to Def Con 27 Volunteers, Videographers and Presenters for publishing their superlative conference videos via their YouTube Channel for all to see, enjoy and learn.

March 10, 2020 /Marc Handelman
Conferences, DEF CON 27, Education, Information Security, Container Security

DEF CON 27, Appsec Village, YanYan Wang's 'Automate Pen Testing In Dockerized CI CD Environment' →

January 13, 2020 by Marc Handelman in Conferences, DEF CON 27, Education, Information Security, Container Security, Application Security

Thanks to Def Con 27 Volunteers, Videographers and Presenters for publishing their superlative conference videos via their YouTube Channel for all to see, enjoy and learn.

January 13, 2020 /Marc Handelman
Conferences, DEF CON 27, Education, Information Security, Container Security, Application Security

BSides Delaware 2018 , Jon Mosco's (@jpmosco) 'Introduction To Container Security In Kubernetes' →

January 11, 2019 by Marc Handelman in BSides Delaware, Conferences, Education, Information Security, SecDevOps, Container Security
January 11, 2019 /Marc Handelman
BSides Delaware, Conferences, Education, Information Security, SecDevOps, Container Security

Docker Hub, The Backdoor

July 01, 2018 by Marc Handelman in Security Hygiene, Information Security, Container Security, Containerization

Dan Goodin, writing at Ars Technica, reported. last week of the backdooring of the Docker Hub by compromised Docker images placed on the site. Apparently, all is well now, as the backdoored image has been removed (after five solid months of public complaints)... The takeaway? Timely Security Hygiene Is A Crucial Attribute For Success Docker Hub Admins!

"Neither the Docker Hub account nor the malicious images it submitted were taken down. Over the coming months, the account went on to submit 14 more malicious images. The submissions were publicly called out two more times, once in January by security firm Sysdig and again in May by security company Fortinet. Eight days after last month's report, Docker Hub finally removed the images." - via Dan Goodin, writing at everyone's beloved Ars Technica

July 01, 2018 /Marc Handelman
Security Hygiene, Information Security, Container Security, Containerization

Daniel Stori's 'The CHROOT Case' →

January 14, 2018 by Marc Handelman in Sarcasm, Satire, Security Humor, Containerization, Container Security

via the non-containerized world-view of Daniel Stori at Turnoff.us!

January 14, 2018 /Marc Handelman
Sarcasm, Satire, Security Humor, Containerization, Container Security

Security, Containered →

January 02, 2018 by Marc Handelman in Containerization, Container Security

via author Tom Mackey, writing at Container Journal, comes this well-wrought piece targeting security challenges with container deployments. Today's Must Read.

January 02, 2018 /Marc Handelman
Containerization, Container Security