Kubernetes Archives

Compliance Operations: Making Kubernetes Audit-Ready by Design

Josh Sopuru | April 23, 2026 | Blog, Compliance, compops, Kubernetes

The post Compliance Operations: Making Kubernetes Audit-Ready by Design appeared first on Anchore.The era of “point-in-time” compliance is over as we already covered in our post from October last year (Compliance Isn’t ...

Anchore

Use of XMRig Cryptominer by Threat Actors Expanding: Expel

Jeffrey Burt | January 9, 2026 | Amazon Web Services (AWS), cryptominers, Expel, G Data, Kaspersky Labs, Kubernetes, MDR (Managed Detection and Response), Monero, React2Shell Vulnerability, Wiz, XMRig miner

Security researchers last year wrote about a surge in the use by threat actors of the legitimate XMRig cryptominer, and cybersecurity firm Expel is now outlining the widening number of malicious ways ...

Security Boulevard

RCE Vulnerability in React Server Components & Next.js | Uptycs

Uptycs Team | December 8, 2025 | Cloud Security, Kubernetes, linux security, Vulnerabilities

Post by Uptycs MDR Team Contributed by: Nandakumar KJ & Nageswra Rao C Technical Details: A critical vulnerability has been discovered in the React Server Components (RSC) 'Flight' protocol, impacting on the ...

Uptycs Blog

Securing Agentic AI: Extending Network Security Principles to Serverless Environments

Anirban Sengupta | November 4, 2025 | Agentic AI, AI, Cybersecurity, Kubernetes

As enterprise AI rapidly matures, we’re entering a new phase, one powered by agentic AI. These intelligent agents are more autonomous, capable of making decisions, taking actions, and adapting dynamically to new ...

Security Boulevard

Uptycs CNAPP for IBM Cloud | Unified Hybrid Exposure Management

Uma Reddy | October 23, 2025 | Cloud Security, IBM, Kubernetes, Linux, linux security

As organizations expand into hybrid and multicloud environments, one challenge becomes clear: maintaining consistent visibility and control across diverse cloud infrastructures. At Uptycs, we’ve solved this for AWS, Azure and GCP. Now ...

Uptycs Blog

Security Debt Is Worse Than Tech Debt — and Twice as Invisible

Annoyed Engineer | May 21, 2025 | AI, Detection, Intel, IR, Kubernetes, misc, Privacy, security, Threat

Security Debt Is Worse Than Tech Debt — and Twice as Invisible We talk about tech debt like it’s a necessary evil. Move fast, break things, fix it later. Everyone’s cool with ...

Annoyed Engineer

Open Source and foreign influence, should we panic?

Josh Bressers | May 15, 2025 | Blog, Container Security, DevSecOps, Docker, Kubernetes

Updated 2025-09-08 to add notes about the similar fast-glob package. Wired recently published an article titled Security Researchers Warn a Widely Used Open Source Tool Poses a ‘Persistent’ Risk to the US ...

Anchore

MCP, OAuth 2.1, PKCE, and the Future of AI Authorization

Kevin Sapp | May 14, 2025 | AI, Best Practices, Kubernetes, OAuth, workloads

6 min readThe MCP authorization spec sets a new standard for securing non-human AI agents – with lessons for anyone building autonomous, scalable systems. The post MCP, OAuth 2.1, PKCE, and the ...

Aembit

Kubernetes Ingress-nginx Remote Code Execution Vulnerability (CVE-2025-1974)

NSFOCUS | March 27, 2025 | Blog, CVE-2025-1974, Emergency Response, Ingress-nginx, Kubernetes, Remote Code Execution

Overview Recently, NSFOCUS CERT detected that Kubernetes issued a security announcement and fixed the Kubernetes Ingress-nginx remote code execution vulnerability (CVE-2025-1974). The Ingress controller deployed in Kubernetes Pod can be accessed through ...

NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

A infograph showing tech workloads and services linked to a central repair symbol with listed access policies.

Aembit Non-Human IAM Connects Cloud-Native and VM Environments

Na-Mii Dev Team | February 28, 2025 | Cloud, Kubernetes, Product updates

5 min readOur latest update enables secure, seamless connectivity for workloads across cloud and Kubernetes, without trust domain restrictions. The post Aembit Non-Human IAM Connects Cloud-Native and VM Environments appeared first on ...

Aembit

Kubernetes

Compliance Operations: Making Kubernetes Audit-Ready by Design

Use of XMRig Cryptominer by Threat Actors Expanding: Expel

RCE Vulnerability in React Server Components & Next.js | Uptycs

Securing Agentic AI: Extending Network Security Principles to Serverless Environments

Uptycs CNAPP for IBM Cloud | Unified Hybrid Exposure Management

Security Debt Is Worse Than Tech Debt — and Twice as Invisible

Open Source and foreign influence, should we panic?

MCP, OAuth 2.1, PKCE, and the Future of AI Authorization

Kubernetes Ingress-nginx Remote Code Execution Vulnerability (CVE-2025-1974)

Aembit Non-Human IAM Connects Cloud-Native and VM Environments

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On