TwistlockLabs

@TwistlockLabs

Cloud native security updates from the Researchers. We break things to provide better vulnerability insights and threat protection.

Everywhere
Vrijeme pridruživanja: rujan 2017.

Tweetovi

Blokirali ste korisnika/cu @TwistlockLabs

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @TwistlockLabs

  1. proslijedio/la je Tweet
    28. lis 2019.

    Copying from containers - kubectl cp uses the containers tar binary, which has helped address some container copy vulns but created new ones 🤦

    Poništi
  2. proslijedio/la je Tweet
    28. lis 2019.

    kubectl cp - has security issues - was proposed to be redesigned, but hasn't yet - found again in the Kubernetes security audit - partial fixes ... still not ideal Many CVEs for the same issue!

    Poništi
  3. proslijedio/la je Tweet

    Our cloud division has identified a critical vulnerability in the Harbor cloud native registry and uncovered 1,300 at-risk systems. This research report explains how attackers can exploit this threat and how to protect your systems:

    Poništi
  4. 18. ruj 2019.

    Yet another Kubernetes cp CVE. Our upcoming talks at OSS Lyon and KubeCon US just keep on growing.

    Poništi
  5. 3. ruj 2019.

    Open sourcing our Splash Pseudo Lambda Shell!

    Poništi
  6. 2. ruj 2019.
    Poništi
  7. 29. kol 2019.
    Poništi
  8. 15. kol 2019.

    Daniel Prizmant explains CVE-2019-11248, what pprof is and how it ended up exposed in Kubernetes

    Poništi
  9. 8. kol 2019.

    Find here out response to the recent Kubernetes security audit report with

    Poništi
  10. 7. kol 2019.

    CVE-2019-11249: Incomplete fixes for CVE-2019-1002101 and CVE-2019-11246, kubectl cp potential directory traversal

    Poništi
  11. 7. kol 2019.

    Malicious clients with the 'clients.write' scope could gain up to full control over your UAA server and Cloud Foundry deployments.

    Poništi
  12. 24. srp 2019.

    Found a DoS in NATS server using go-fuzz. Read about Aviv's research here Thanks again to Collin and the NATS team for making the disclosure process as smooth as possible

    Poništi
  13. 3. srp 2019.

    If you use Nexus Repository Manager, please read Daniel's recent vulnerability disclosure post

    Poništi
  14. 29. lip 2019.

    Go read our newest post by Yuval on an SQL vulnerability in Cloud Foundry UAA

    Poništi
  15. 26. lip 2019.

    In case you haven't updated yet, CVE-2019-11246 was assigned for an insufficient fix of CVE-2019-1002101, a cp vulnerability in Kubernetes. Please update your kubectls to any of versions 1.12.9, 1.13.6, or 1.14.2 or newer 👮‍♂️

    Poništi
  16. 24. lip 2019.

    Tried solving our T19 CTF? Read the excellent solution writeup by our new researcher Daniel Prizmat

    Poništi
  17. 30. svi 2019.

    Check out our newest blog by Yuval discussing 3 new and unpatched vulnerabilities he found in rkt🚀

    Poništi
  18. 22. svi 2019.

    Hi , thanks to everyone who attended our talk today on building a CTF with K8s. The slides can be found here:

    Poništi
  19. proslijedio/la je Tweet
    15. svi 2019.

    Our team digs into the implications of Vulnerability CVE-2019-8339 in today's

    Poništi
  20. 27. tra 2019.

    Please read John's post regarding the Docker Hub breach.

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·