Unfortunately I won't be attending @Steel_Con this year but a quick note. If you are using the conference Wifi and ssh, @jpts_ found last year that using "KexAlgorithms curve25519-sha256@libssh.org" solved connectivity issues. Enjoy the conference!💪💻

Malicious VSCode extensions can steal secrets from other extensions. Discovered and disclosed by our talented security researchers @FabianKimmel and @wakewarduk, write-ups and source code now public: 🔍 Introduction to attack vectors and initial findings control-plane.io/posts/abusi… 🔍 Deep dive into the technical details and potential mitigations control-plane.io/posts/abusi… 📦 Proof of concept extension that steals all the secrets github.com/controlplaneio/re… Join us in raising awareness about this critical issue, and let's work together to enhance the security of our development tools. #ControlPlane #CyberSecurity #VSCode #Research #Security #DevSecOps #OpenSource

Can I ask my U.K security followers to please please please retweet this, we're putting on our first BSides in Exeter in July this year and it's going to be great. Tickets and details are available here ti.to/bsides-exeter/bsides-e…

@snyksec has discovered a new container breakout, known as CVE-2024-21626 Check out WithSecure Labs for more about the proof of concept and its demos for the docker / kubernetes / CI/CD environments: labs.withsecure.com/publicat…

🌐 2024 Cloud & Kubernetes Security Forecast 🌐 control-plane.io/posts/cloud… The year is unfolding with pivotal shifts in cloud and Kubernetes security, with a rollercoaster of developments, notably: 💣 AI supply-chain time bombs with VEX/SBOM trust issues 🛡️ FINOS CCC for hybrid cloud regulations with a slice of WASM 🚨 CISOs navigating OSS licensing, regulation, and quantum crypto IAM, “Open Source” AI, Rust, Confidential Computing, and OSS all make an appearance — I hope it only partially transpires 🙏 ⚔️ Global conflict and economic tightening impacting security strategies 💣 AI supply chain vulnerabilities bringing new threats 🧬 Quantum computing up-ending traditional cryptography 👾 Evolving AI threats bringing unprecedented challenges 🔑 Novel identity and access mechanisms revolutionizing security 🛡️ Battling multicloud misconfiguration exposures 📊 "Open Source" AI and layers of reproducibility challenge 🌐 Rust securing perpetuity in the Linux kernel 🔗 WebAssembly revolutionizing language interoperability 🔒 Confidential Computing enhancing security on untrusted hardware 🚨 CISOs facing increased penalties; cybersecurity insurance evolving But it's not all bad news in the ever-shifting global dynamics of cloud security 🚀☁💻

Massive thank you to everyone who attended the #KubeConNA CTF. I hope you enjoyed it and I really appreciate all the lovely feedback ♥️ 👊

I’ll be speaking at @G3CUK today at 11:30 on the secret life of containers. We’ll have lots of demos that could go wrong and stickers!

Just finished the #EKSClusterGames by @Wiz_io! 🚀 An amazing journey through Amazon EKS configurations! Ready to test your skills? Join the challenge here: eksclustergames.com eksclustergames.com/finisher…

Myself and @smarticu5 will be at BSides London this year giving a workshop on container and Kubernetes Security. So if you'd like to get hands-on, securing and attacking containers, make sure to come along! pretalx.com/bsides-london-20…

5 mins to go and I’ll be talking about the secret life of kubernetes containers at KCD UK

Ready to Dive into the World of Kubernetes Hacking? 🕵️‍♂️ Join our CTF workshop tomorrow at @kcduk_io with @wakewarduk from 10:00am and play our hands-on challenges to upskill your knowledge of Kubernetes. #KCDUK

Are you a young adult or early-career woman intrigued by the dynamic world of #cybersecurity? Dive into this hands-on experience with @Hacker0x01 that will open doors to the thrilling realms of bug bounties, web hacking & application security. RSVP today! womenscyberjutsu.org/event/g…

Got a workshop submission in for @BSidesLondon this year so 🤞i’ll be there!

Kubernetes workshop is now in full swing! 😎🧑🏻‍💻

I'll be running a workshop tomorrow at #44CON2023 going through the security basics for containers and Kubernetes with a nautical themed CTF challenge to play🦈🏴‍☠️. Find the session here 👉44con.com/44con-2023-talks-a… See you there!

The last part of our #Container #Security Fundamentals blog series is out now. In this part we're taking a looking at how containers use seccomp filters to provide fine grained restrictions on Linux syscalls. securitylabs.datadoghq.com/a…

Excited to announce that Kevin Ward will be presenting "Kuber-what? A security professionals intro to Kubernetes and Containers" at #44CON2023

🌩️Unleash the Storm in the Cloud! Join us on our #DEFCON livestream with Matt Johansen (@mattjay), Andrew Martin (@sublimino), and Moses Frost (@mosesrenegade) for a captivating journey into #cloudhacking! 🌩️ In this session, these experts will embark on a deep dive into the #cloud. From identifying misconfigurations to infiltrating cloud-based environments, our speakers will demonstrate cutting-edge techniques to explore the uncharted territories of #cloudsecurity. Get ready to conquer the cloud in this #BFLive session on Aug. 11! bfx.social/3NNr57F

Two weeks until we’re fly to Vegas for #Kubernetes Attack & Defense at #BHUSA! Content updates include using Falco and playing a CTF! Students get a laptop to keep w/ CTF VMs & K8S cluster to #hack, gathering flags, breaking their attacks. @BlackHatEvents blackhat.com/us-23/training/…

If you enjoyed the @controlplaneio CTF yesterday and want more CI hax, come see my talk in track 2 at 1400 for some war stories from the @NCCGroupInfosec team