Blog

Member post by Nigel Douglas, Sysdig In cloud-native systems, understanding the behaviour of complex, distributed web apps requires powerful tools that can dissect system activity down to its core. As the CNCF graduate project Falco demonstrates,...

Member post by Jatinder Singh Purba, Principal, Infosys; Krishnakumar V, Principal, Infosys; Prabhat Kumar, Senior Industry Principal, Infosys; and Shreshta Shyamsundar, Distinguished Technologist, Infosys Emerging Trends in the Cloud-native Ecosystem In the last quarter of 2024,...

Falco has become a vital tool for security practitioners seeking to safeguard containerized and cloud-native environments. Leveraging the power of eBPF (Extended Berkeley Packet Filter), Falco monitors system calls and audit events, allowing it to detect...

Project post by the Falco Team and Nigel Douglas Falco achieved CNCF Graduation status on February 29, 2024. Following the celebration of this significant milestone at  KubeCon EU in Paris earlier this year, the project has...

Community post by Gerardo Lopez Falcon En el mundo moderno del desarrollo de software, los contenedores han transformado la forma en que las empresas y los desarrolladores despliegan y administran sus aplicaciones. Sin embargo, con esta...

Community post originally published on Medium by Matteo Bianchi Kubernetes has had a community-driven release lifecycle since forever now and I took part of it as Comms Shadow for v1.31, here’s how it went and what...

Community post by Andrés Vega, M42 and Technical Leader, CNCF TAG Security Recent events involving CrowdStrike’s Falcon security software have underscored a critical lesson across the industry: the importance of having a robust, secure release process....

Member post by Nigel Douglas, Senior Developer Advocate at Sysdig Kubernetes will celebrate its 10th anniversary at the “KuberTENes Birthday Bash” this week.  This milestone is a perfect time to commemorate the platform’s decade-long journey and...

Member post originally published on Sysdig’s blog by Nigel Douglas The recent discovery of a backdoor in XZ Utils (CVE-2024-3094), a data compression utility used by a wide array of various open-source, Linux-based computer applications, underscores the importance...

Cross-post from the Cloud Native Sustainability blog by Antonio di Turi, Imma Valls, Kristina Devochko, Leonard Pahlke, Niki Manoledaki, Ross Fairbanks In this blog post, we will take a look at how the Green Reviews Working...

We’re excited to announce a slew of graduated project updates. Read on for some, but not all, of the latest news from the project teams, or get the comprehensive details on the video (which will preview...

Member post originally published on SighUp’s blog by Simone Ragonesi and Sara Trappetti Introduction In this article, we will conduct an in-depth exploration of an impactful vulnerability affecting various container runtimes. A few days ago, the email inbox...

Community post originally published on DZone by Nigel Douglas In highly dynamic cloud-native environments, the traditional Threat Detection and Response (TDR) approaches are increasingly showing their limitations. With its unique architecture and operational dynamics, Kubernetes demands re-evaluating how we handle...

By Christophe Sauthier, Cloud Native Training and Certification Lead, CNCF A recent CNCF micro-survey focused on training and certification revealed that the vast majority of IT professionals are eager to take new training courses or certifications....

Cloud Native Computing Foundation and Linux Foundation Training and Certification have announced the launch of Detecting Cloud Runtime Threats with Falco (LFS254) to arm IT professionals, security analysts and DevOps engineers with the expertise to fortify...

Member post by Rob Newsome, Head of Product Management at stack.io Container runtime security represents the proactive measures and controls used to protect a containerized application during its runtime phase. In the contemporary world of DevOps,...

If the past couple of years taught us anything, it’s the importance of security in cloud native and open source environments. The fallout of vulnerabilities like Log4j even reached the U.S. Federal Government with the Executive...

Project post originally published on the Falco blog by Luca Guerra, Lorenzo Susini, Vicente J. Jiménez Miras In version 0.32.1, Falco first introduced support for gVisor. So, what is it and how can we use it? gVisor, quoting the official...

Guest post originally published on the Elastisys blog by the Elastisys team The NSA/CISA guidelines summarized, with Elastisys hands-on advice and real-world recommendations. Kubernetes is now the most popular container orchestration platform. Practically gone are the Mesoses...

Guest post originally published on Falco’s blog by Frederico Araujo and Teryl Taylor, IBM Research Hello, fellow Falcoers! This blog introduces you to a new open system telemetry format and project called SysFlow. The project has deep...