Wiresharkを作ったエンジニアが生んだのがFalco。 カーネルレベルでシステムの動きを監視するオープンソースで、 これを基盤にしたのがSysdig。 そして今も、そのFalcoはOSSコミュニティの力で進化し続けている。 たとえば日本人エンジニアによる拡張「Falco-ya」。 Nginxログを解析してSQLiやXSSなどのWeb攻撃を検知するFalcoプラグイン。 OSSの文化が、今も世界中で拡張され続けている。 #Sysdig #Falco #Falcoya #Wireshark #OpenSource #Security #クラウドネイティブ

🚨 Sysdig: The Open-Source #Linux Tool That Could Save Your Infrastructure from Silent Breaches Video undercodetesting.com/sysdig-… Educational Purposes!

2/3 Timeline: production DB deleted (Apr 30), first AI zero-day (May 12), Bonnie & Clyde emergent coordination (May 16), BadHost CVE affecting millions of MCP servers (May 28), Sysdig LLM attack (Jun 1), 21 zero-days found by AI for $1,000 (Jun 9)...

Cloud security is now a business priority, not just an IT one. ☁️🔐

An Anthropic API key can reach sensitive data, run code, and act on a user's behalf. Most security teams still treat it as an afterthought. A compliance event is one frame, not the whole movie. Read the blog: okt.to/FwzHb3 #CloudSecurity #AIAgents #RuntimeSecurity

treating api keys like they're nothing when they're basically root access to your agent stack. security belongs in the architecture, not the post-mortem.

On May 6-8, 2026, Sysdig announced its Headless Cloud Security platform, a fundamental reimagining of cloud-native application protection (CNAPP). Rather than requiring security teams to log into dashboards, the platform instead equips AI agents as the primary operators of…

8, 2026, — The Era of Headless Defense: Sysdig Replaces Security Dashboards with AI Agents. On May 6-8, 2026, Sysdig announced its Headless Cloud Security platform, a fundamental reimagining of cloud-native application protection (CNAPP).

Unpopular opinion: Most "AI agents" are just prompts duct-taped to APIs. TL;DR Sysdig unveiled the industry's first headless cloud security platform (May 6, 2026), shifting cloud security from traditional UIs to AI agents as primary operators.

AI時代のRuntime Security - なぜSysdigはSyscallを見るのか qiita.com/keitah/items/b8fc0… #Qiita via @keitah0322

How attackers exploited LMDeploy LLM inference engines in 12 hours Sysdig LMDeploy’s chat-completion "yolo" endpoint blindly fetches whatever URL is in image_url, turning the model server into an SSRF proxy. Within 13 hours of the CVE, attackers hit a Sysdig honeypot and — in ~8 minutes — pulled AWS IAM credentials from the metadata service, port-scanned Redis and MySQL, then reached an unauthenticated admin endpoint. 🔍 Technical takeaways - Exploit vector: unchecked image_url → SSRF via "yolo". - Impact chain: SSRF → metadata access → IAM token theft → lateral scanning (Redis/MySQL) → unauthenticated admin access. - Timeline: CVE public → 13 hours to first compromise; 8 minutes from access to credential exfiltration. 🛡️ How to reduce risk - Sanitize or block arbitrary remote fetches; validate URLs. - Restrict inference-server egress and use network allowlists. - Harden instance metadata access (IMDS protections) and enforce least-privilege IAM. - Require auth on admin endpoints and monitor outbound requests for SSRF signs. Source: AWS Security Digest Issue #258 — awssecuritydigest.com/past-i… Read here: webflow.sysdig.com/blog/cve-…

Ajan coşkusunun gölgede kalan yüzü: güvenlik firması #Sysdig, bir LLM ajanının kullanıldığı ilk doğrulanmış gerçek siber saldırıyı belgeledi — ajan, bir bulut veritabanını bir saatten kısa sürede kendi başına dışarı sızdırdı. Ajanlar iş yapabildikçe, kötü niyetli işleri de yapabiliyor. Bu da konuşulması gereken bir başlık.

Congrats. The timing of this move says a lot — same month Sysdig documented the first confirmed autonomous LLM agent cyberattack in the wild, and Anthropic's Mythos found 271 Firefox zero-days buried for 15-20 years. Offense and defense are accelerating simultaneously, and right now offense has a head start. "Resilient by design" is the right frame. The vulnerability-discovery-to-exploitation window is compressing faster than any human-driven patch cycle can keep up with. Eliminating entire classes of bugs beats finding them one at a time. Looking forward to seeing what you ship.

Cloud security isn't just a technical conversation anymore. It's a boardroom one. Sysdig CFO Karen Walker keynoted the CFO Leadership Council's 2026 Spring Conference in Boston last week. Thanks to Jack McCullough for the platform. 💚 #Leadership #CFO #CloudSecurity okt.to/O29T64

多田さん読まれたSysdigさんのブログはこれかな？👀 sysdig.com/blog/welcome-to-h… #FusicKINTOMeetup

Sysdig reports a 75% drop in exploitable in-use vulns, yet rising vulnerability volume is outpacing human response. The next phase may require AI-assisted exploitation and guarded AI remediation. #Sysdig #ProjectGlasswing #MITRE ift.tt/gFxPDUr

Less time to react than ever. 📉

『脆弱性管理は人間のスケールの限界に達しつつある』 Anthropic の Project Glasswing は、ソフトウェアの脆弱性を検出できる AI でありながら、一般公開するにはリスクが高すぎると判断されました。 sysdig.com/jp/blog/vulnerabi… #ランタイムセキュリティ #AI #パラダイムシフト #Sysdig