SUSE Blog

Tag: Exploits

Avatar photo
By: Glen Kosaka

April 3, 2024 1:56 pm

4,075 views

How NeuVector Can Protect Against the XZ Backdoor Attack CVE-2024-3094 in Kubernetes Environments

Security researcher Andres Freund reported to Debian that the xz/liblzma library had been backdoored. As a result, CVE-2024-3094 was published with a critical CVSS score of 10. This vulnerability stems from a supply chain compromise on versions 5.6.0 and 5.6.1 of XZ Utils. XZ Utils is data compression software included in […]

Read More

Tags: , , , , , , , , ,

Categories: Containers, Featured Content, Featured Content Main, Kubernetes, Security, SUSE Blog, SUSE Security

Avatar photo
By: Glen Kosaka

December 12, 2021 1:29 pm

4,243 views

Critical Vulnerability in Apache Log4j 2 (CVE-2021-44228)

A critical, high severity vulnerability (CVSS v3.0 10/10 rating) in the Apache Log4j open source Java logging library was disclosed Thursday, December 9 on the foundation’s github page. On Wednesday, Dec 15 a new vulnerability CVE-2021-45046 was published and patched, according to this article. This was the result of an incomplete initial patch […]

Read More

Tags: , , , ,

Categories: Security, SUSE Security

Avatar photo
By: Glen Kosaka

August 23, 2018 11:57 am

7,209 views

How to Hack a Kubernetes Container, Then Detect and Prevent It

By Dieter Reuter As we talked about before in this blog, containers are just vulnerable to be attacked as non-container workloads. Hackers can use many of their old tricks on new containers, such as application exploits, network attacks, or phishing scams. In this post and demo, I’ll show how to hack a Kubernetes container […]

Read More

Tags: , ,

Categories: SUSE Security

Avatar photo
By: Fei Huang

April 18, 2018 12:21 pm

1,938 views

The Ultimate Guide to Kubernetes Security

By Fei Huang and Gary Duan Containers and tools like Kubernetes enable enterprises to automate many aspects of application deployment, providing tremendous business benefits. But these new deployments are just as vulnerable to attacks and exploits from hackers and insiders as traditional environments, making Kubernetes security a critical component for all deployments. Attacks for ransomware, […]

Read More

Tags: , ,

Categories: SUSE Security

Avatar photo
By: Glen Kosaka

March 22, 2018 12:28 pm

1,504 views

Kubernetes System Security – Protecting Against Kubelet Exploits

By Andson Tung As critical as it is to protect application containers deployed by Kubernetes, it is just as critical to protect the Kubernetes system containers from attacks or from being used in an attack. In this post I’ll focus on one important Kubernetes security area – protecting the Kubelet, which manages the pods […]

Read More

Tags: , ,

Categories: SUSE Security

    Section Title

    Search

    Social Media

    Recent Posts Title

    Recent Blog Posts

    Recent Posts

    Popular Posts Title

    Popular Blog Posts

    Popular Posts

    Categories

    Archives

    About Links

    SUSE History
    SUSE Management Team
    SUSE Logos & Imagery