Hacker News
- Kubernetes Exposed: One YAML Away from Disaster https://blog.aquasec.com/kubernetes-exposed-one-yaml-away-from-disaster 148 comments
- A Brief History of Containers: From the 1970s to 2017 https://blog.aquasec.com/a-brief-history-of-containers-from-1970s-chroot-to-docker-2016 2 comments
- Deceptive Deprecation: The Truth About npm Deprecated Packages https://blog.aquasec.com/deceptive-deprecation-the-truth-about-npm-deprecated-packages 12 comments javascript
- Deceptive Deprecation: The Truth About npm Deprecated Packages https://blog.aquasec.com/deceptive-deprecation-the-truth-about-npm-deprecated-packages 13 comments programming
- Deceptive Deprecation: The Truth About npm Deprecated Packages https://blog.aquasec.com/deceptive-deprecation-the-truth-about-npm-deprecated-packages 2 comments netsec
- The Ticking Supply Chain Attack Bomb of Exposed Kubernetes Secrets https://blog.aquasec.com/the-ticking-supply-chain-attack-bomb-of-exposed-kubernetes-secrets 13 comments sysadmin
- The Ticking Supply Chain Attack Bomb of Exposed Kubernetes Secrets https://blog.aquasec.com/the-ticking-supply-chain-attack-bomb-of-exposed-kubernetes-secrets 8 comments kubernetes
- The Ticking Supply Chain Attack Bomb of Exposed Kubernetes Secrets https://blog.aquasec.com/the-ticking-supply-chain-attack-bomb-of-exposed-kubernetes-secrets 5 comments netsec
- 50 Shades of Vulnerabilities: Uncovering Flaws in Open-Source Vulnerability Disclosures https://blog.aquasec.com/50-shades-of-vulnerabilities-uncovering-flaws-in-open-source-vulnerability-disclosures 2 comments netsec
- PowerHell: Active Flaws in PowerShell Gallery Expose Users to Attacks https://blog.aquasec.com/powerhell-active-flaws-in-powershell-gallery-expose-users-to-attacks 7 comments netsec
- Kubernetes Exposed: One Yaml away from Disaster https://blog.aquasec.com/kubernetes-exposed-one-yaml-away-from-disaster 4 comments netsec
- Kubernetes Exposed: One Yaml away from Disaster https://blog.aquasec.com/kubernetes-exposed-one-yaml-away-from-disaster 21 comments kubernetes
- TeamTNT Reemerged with New Aggressive Campaign https://blog.aquasec.com/teamtnt-reemerged-with-new-aggressive-cloud-campaign 2 comments netsec
- GitHub Dataset Reveals Millions Potentially Vulnerable to RepoJacking https://blog.aquasec.com/github-dataset-research-reveals-millions-potentially-vulnerable-to-repojacking 10 comments netsec
- First-Ever Attack Leveraging Kubernetes RBAC to Backdoor Clusters https://blog.aquasec.com/leveraging-kubernetes-rbac-to-backdoor-clusters 25 comments kubernetes
- CorePlague: Severe Vulnerabilities in Jenkins Server Lead to Remote Code Execution https://blog.aquasec.com/jenkins-server-vulnerabilities 10 comments netsec
- HeadCrab: A Novel State-of-the-Art Redis Malware in a Global Campaign https://blog.aquasec.com/headcrab-attacks-servers-worldwide-with-novel-state-of-art-redis-malware 6 comments netsec
- Can You Trust Your VSCode Extensions? A Hidden Security & Privacy Hazard https://blog.aquasec.com/can-you-trust-your-vscode-extensions 4 comments privacy
- VSCode Supply Chain Attacks: Protect Your IDE from Malicious Extensions https://blog.aquasec.com/can-you-trust-your-vscode-extensions 14 comments netsec
- Developing with VSCode? Beware of malicious extensions https://blog.aquasec.com/can-you-trust-your-vscode-extensions 55 comments programming
- VSCode Extensions: A Hidden Security Hazard? https://blog.aquasec.com/can-you-trust-your-vscode-extensions 10 comments vscode
- Redigo — New Redis Backdoor Malware https://blog.aquasec.com/redigo-redis-backdoor-malware 4 comments netsec
- Private npm Packages Disclosed via Timing Attacks https://blog.aquasec.com/private-packages-disclosed-via-timing-attack-on-npm 13 comments netsec
- Exposed Travis CI API Leaves All Free-Tier Users Open to Attack https://blog.aquasec.com/travis-ci-security 3 comments netsec
- Kubernetes Version 1.23: What’s New for Security? https://blog.aquasec.com/kubernetes-version-1.23-security-features 7 comments kubernetes
- it finally happened https://blog.aquasec.com/threat-alert-kinsing-malware-container-vulnerability 37 comments selfhosted
- Threat Alert: Kinsing Malware Attacks Targeting Container Environments https://blog.aquasec.com/threat-alert-kinsing-malware-container-vulnerability 5 comments netsec
- Check out the blog I wrote about an automated attack abusing Docker API to penetrate into your cloud environment https://blog.aquasec.com/threat-alert-cloud-computing-security 7 comments netsec
- Kubernetes Root Read Traversal Exploit https://blog.aquasec.com/kubernetes-security-pod-escape-log-mounts 11 comments netsec
- DNS Spoofing in Kubernetes Cluster [x-post r/kubernetes] https://blog.aquasec.com/dns-spoofing-kubernetes-clusters 8 comments netsec
- DNS Spoofing in Kubernetes clusters https://blog.aquasec.com/dns-spoofing-kubernetes-clusters 16 comments kubernetes
- Kube-hunter - an open source tool for Kubernetes penetration testing https://blog.aquasec.com/kube-hunter-kubernetes-penetration-testing 3 comments kubernetes
- Vine's Docker Registry "Hack": A Bad Case of RTFM http://blog.aquasec.com/vines-docker-registry-hack-a-bad-case-of-rtfm?utm_source=reddit&utm_medium=social&utm_campaign=tr 7 comments docker