The leader in real-time cloud security
Joined January 2014
- Tweets 7,699
- Following 1,305
- Followers 10,285
- Likes 4,278
3,090 Photos and videos
An Anthropic API key can reach sensitive data, run code, and act on a user's behalf.
Most security teams still treat it as an afterthought.
A compliance event is one frame, not the whole movie. Read the blog: okt.to/FwzHb3
#CloudSecurity #AIAgents #RuntimeSecurity
1
1
2
134
Cloud security isn't just a technical conversation anymore. It's a boardroom one.
Sysdig CFO Karen Walker keynoted the CFO Leadership Council's 2026 Spring Conference in Boston last week. Thanks to Jack McCullough for the platform. 💚
#Leadership #CFO #CloudSecurity okt.to/O29T64
1
1
3
116
In 2018, it took nearly a year to weaponize a vulnerability. By 2025, hours.
In-use vulnerabilities have plateaued at 5% for two years running. This is no longer a tooling problem. It's a scale problem.
Read the breakdown: okt.to/ch5By0
#CloudSecurity #VulnerabilityManagement #AIAgents
1
2
4
125
AI agents execute shell commands, read files, and call APIs with no human approving each step.
Traditional behavioral baselines don't work for them. Runtime security has to change.
Here's how: okt.to/OxKBfq
#CloudSecurity #AIAgents #RuntimeSecurity #Falco
1
3
113
Vulnerability management isn't failing. The operating model it was built on has reached its natural limit.
5.5% of vulnerable images still in running workloads. For years that number was falling. Now it's not.
Latest article: okt.to/7IoAzS
#CloudSecurity #VulnerabilityManagement #AIAgents
1
2
142
Real investigations don't stay in one place. Now your runtime intelligence doesn't have to either.
Introducing the Sysdig Runtime Investigation Skill.
okt.to/qDWTuk
#CloudSecurity #HeadlessCloudSecurity
1
3
159
🚨 First confirmed: an AI agent driving container escape and Kubernetes credential replay, no human in the loop.
Same marimo CVE. This time the agent went straight for the container and orchestration plane. Docker socket escape, host credential harvest, full cluster Secret store dumped.
Full research from Sysdig TRT: okt.to/AEjGXg
#CloudSecurity #ThreatResearch #AIAgents #KubernetesSecurity
1
3
4
220
The industry normalized a tradeoff that never should have existed: break least privilege to deploy security.
Sysdig Host Shield Least Privilege Mode removes it. Runtime protection without privileged containers.
Read the blog: okt.to/VPKcGS
#CloudSecurity #KubernetesSecurity #RuntimeSecurity #Compliance
1
2
3
151
The problem with agentic security workflows isn't access to data. It's making that data callable from the agent.
The Sysdig MCP server on AWS Marketplace closes that gap, inside Amazon Bedrock AgentCore.
Read the blog: okt.to/uVP2Fe
#CloudSecurity #HeadlessCloudSecurity #DSPM #AmazonBedrock
1
1
174
G2 Spring 2026 results are in. Sysdig earned Leader recognition across multiple categories, including CNAPP Leader, Cloud Security Leader, and Customers Love Us. 🏆
See the stories behind the recognition: okt.to/6kdaTn
#CloudSecurity #G2Leader #CNAPP
1
4
194
Vulnerability remediation doesn't break down at identification. It breaks down at the handoff.
Sysdig Headless Cloud Security automates the entire workflow, from prioritized finding to developer-ready pull request, in minutes.
Read the blog: okt.to/H1wSum
#CloudSecurity #HeadlessCloudSecurity #VulnerabilityManagement
1
1
5
260
The hustle hard era of cloud security is over.
5.5% of production workloads running critical vulns, flat year over year. Attackers exploiting CVEs in under 20 hours.
Sysdig's Crystal Morin on the human ceiling, and what comes next.
Zero Signal podcast: okt.to/D5p1Il
#CloudSecurity #ThreatResearch #AIAgents
1
1
3
132
Once AI workloads reach production, security becomes an infrastructure and runtime problem, not just a model protection challenge.
The Sysdig team explored NVIDIA's AI stack firsthand to break down what that looks like in practice.
Read the blog: okt.to/A7ScLh
#CloudSecurity #AIWorkloads #RuntimeSecurity #NVIDIA
1
4
176
Sysdig TRT found a detection gap in Azure VM password resets. Microsoft says it's "not a vulnerability." 🚨
Azure allows extension resource names to be user-defined. Activity logs don't include the actual publisher or type. A malicious extension can look like "compliance-check" in your logs.
Full research: okt.to/jdE0uS
#CloudSecurity #ThreatResearch #Azure #DetectionEngineering
2
4
257
The bottleneck isn't identifying risk. It's turning requirements into enforceable policy fast enough to matter.
Headless cloud security changes that workflow. Describe the control, Sysdig translates it into validated, deployable policy.
Read the blog: okt.to/CluqRj
#CloudSecurity #HeadlessCloudSecurity #CSPM
1
3
160
Preventative controls are your pregame strategy. Runtime is where the game is actually played.
Attackers are building working exploits within hours of a CVE dropping. 66% of orgs are running AI workloads on Kubernetes. The attack surface isn't waiting for you.
Read the blog: okt.to/PszHAv
#CloudSecurity #RuntimeSecurity #AIWorkloads
1
5
220
Ten years ago, we announced Falco with a simple goal: bring real runtime visibility to cloud-native security. 🎉
175M container image pulls. 8,600 GitHub stars. 1,600 contributors. What it became is something much bigger.
Watch the full celebration: okt.to/mqL2Jn
#Falco #OpenSource #CloudSecurity #CNCF
1
2
8
413
Massive scale. Traffic surges. No room for guesswork.
See how @SquareEnix uses Sysdig for runtime visibility, faster investigations, and better vulnerability prioritization.
Read the case study: okt.to/flnmuR
1
4
191
3 hours. 44 minutes. That's how long it took for active scanning to start after CVE-2026-44338 dropped.
Advisory-to-exploitation windows are now measured in single-digit hours. Every AI project is a target.
Full research from Sysdig TRT: okt.to/wiS9LD
#CloudSecurity #ThreatResearch #AIAgents
1
2
8
480
🚨 NEW: the Sysdig Threat Research Team has identified what appears to be the FIRST published case of a threat actor using a NATS server as command-and-control infrastructure. We’re calling this “NATS-as-C2.”
↳ The full breakdown: okt.to/oSnui0
#CyberSecurity
4
7
591