TLDR: NCC Group selected to perform K8s security evaluation in response to K8s sig security’s third-party audit request proposal. Security architectural design review and dynamic pen testing were conducted, revealing vulnerabilities in component communication and input sanitization. Key findings in.. read more  

Researchers have discovered a Python-based credential harvesting and hack tool named Legion, which is sold via the Telegram messenger. Legion is designed to exploit various services for email abuse, including SMTP servers, Apache vulnerabilities, and AWS services, among other things. The tool also .. read more  

Github accidentally committed their SSH RSA private key to a repository, causing infrastructure to break for many users who needed to update their keys. This issue could have been avoided if SSH used certificates like TLS does, but SSH uses a Trust on First Use model which can lead to users blindly.. read more  

This article discusses the importance of securing your company's domain name to prevent domain hijacking and cybercrime. It explains what DNS is and the various types of DNS hijacking, such as man-in-the-middle attacks, rogue DNS server attacks, local DNS hijacks, and router DNS hijacks. The artic.. read more  

Cyberattacks are increasing in complexity and frequency, posing a significant risk to small and medium businesses (SMBs) that may not have the resources to protect themselves or recover from an attack. Microsoft has made Azure Firewall Basic generally available to address this need by providing SMB.. read more  

Kubernetes version 1.26 support in AKS is now generally available. You can now take advantage of the v1.26 features in production... read more  

Microsoft has released a preview of itsHotpatch capability for users of Windows Server 2022 Datacenter Azure Editionwith the "Desktop Experience" install option and for Azure Stack HCI users. Hotpatch is designed to allow IT departments to update a Windows Server virtual machine without a reboot. .. read more  

Event based scaling is fundamental to the serverless promise. Target based scaling is an improvement on the Azure Functions Consumption and Premium plans scaling experience, providing a faster and more intuitive scaling model for customers. It is currently supported by the Service Bus Queues and Top.. read more  

In this post, the author demonstrates how to deploy a web application on Azure Kubernetes Service (AKS) without writing Docker or Kubernetes manifest files using the open-source command-line tool,DraftandAcorn. The tool containerizes and deploys the app, generates Docker manifests based on the proj.. read more  

Diggeris an open-source alternative to Terraform Cloud that enables running Terraform Plan and Apply in Github Actions. The latest update adds Azure support for locking that can be implemented with Storage Account tables. It requires setting a mandatory environment variable of DIGGER_AZURE_AUTH_MET.. read more