CNCF has a lot of amazing tools for monitoring and observability: Prometheus, Grafana, Fluentd, Jaeger and many more. These are tools we rely upon to watch our production systems and help us diagnose problems when something breaks.
But have you ever asked yourself how these tools affect the security of your company? This is not a question that is asked often. After all, these are just monitoring tools – how can a hacker exploit them?
Join us to find out! In this webinar, we will conduct threat modeling for those tools, and see what kind of risks they pose. You’ll come away with some ideas of how to better secure your monitoring infrastructure, as well as an appreciation of how to conduct threat modeling for your own systems.
Omer Levi Hevroni, Application Security Engineer @Synk