Anatomy of a CVE This article is an in-depth exploration of an impactful container-breakout vulnerability affecting runc-based container runtimes.
Codebreaking Clouds: Hacking Cloud Native Environments through VAPT Mastery. Discover all you need to know about Cloud-Native Vulnerability Assessment and Penetration Testing (VAPT) with practical examples.
Conjur CyberArk Conjur 13.1 has been released with interesting updates under the hood This week CyberArk has released Conjur version 13.1, in this blog post we will discover all the interesting news and updates.
Supply Chain Security Framework: S2C2F In this article, we will introduce you to S2C2F. The Secure Supply Chain Consumption Framework is a combination of requirements and tools for any organization to adopt made by the Open Source Security Foundation.
announcements SIGHUP and Chainguard Partner to deliver Cutting-Edge Software Supply Chain Security in the European market We are excited to share that SIGHUP and Chainguard have teamed up to design the forefront of infrastructure and software supply chain security.
Cyberark CyberArk Conjur 13.0 what's new? CyberArk has released Conjur 13.0 version. In this article, we'll deep-dive into this new release exploring all the new features that have been added.
CNCF SIGHUP’s tales from KubeCon + CloudNativeCon EU 2023 Read the SIGHUP's tale from KubeCon EU 2023. We share our experience at the conference, retracing announcements, talk takeaways, trending topics highlights and upcoming events.
DevSecOps Snyk and Shift-Left approach: Boosting your security compliance with ease. This article will provide a brief overview, some example use cases on Snyk's tools and features, and how we used it to improve Kubernetes Fury Distribution's security.
Conjur CyberArk Security Bulletin CA23-01, is your Conjur environment affected? What happened? Yesterday CyberArk published the security bulletin CA23-01 related to a critical vulnerability of the Rake ruby package, described in the CVE-2022-30123 . The vulnerability could be used remotely and allow a shell escape within the Conjur leader container. This issue only affects Conjur Enterprise. Containers of Conjur products other
announcements Featured SIGHUP Announces New Partnership with Snyk SIGHUP announces its Partnership with Snyk. Joining the forces together, these two companies aim to speed up developer security and DevSecOps best practice adoption.
Conjur Secrets manager? Yes please! Some insight about CyberArk Conjur In the last years, an explosion of human and not human identities has changed our corporations. Cloud workloads need to be identified and granted in the correct way. CyberArk Conjur, together SIGHUP expertise can solve these needs in the right way.