CVE-2023-41333 Bypass of namespace restrictions in CiliumNetworkPolicy

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An attacker with the ability to create or modify CiliumNetworkPolicy objects in a particular namespace is able to affect traffic on an entire Cilium cluster, potentially bypassing policy enforcement in othe...

CVE-2023-39347 Cilium NetworkPolicy bypass via pod labels

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An attacker with the ability to update pod labels can cause Cilium to apply incorrect network policies. This issue arises due to the fact that on pod update, Cilium incorrectly uses user-provided pod labels...

CVE-2023-39347 Cilium NetworkPolicy bypass via pod labels

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An attacker with the ability to update pod labels can cause Cilium to apply incorrect network policies. This issue arises due to the fact that on pod update, Cilium incorrectly uses user-provided pod labels...

Do You Really Trust Your Web Application Supply Chain?

Well, you shouldn't. It may already be hiding vulnerabilities. It's the modular nature of modern web applications that has made them so effective. They can call on dozens of third-party web components, JS frameworks, and open-source tools to deliver all the different functionalities that keep the...

AI is the Solution, Not the Problem

AI is the Solution, Not the Problem By Trellix · August 07, 2023 This story was also written by Oded Margalit. AI Artificial Intelligence / ML Machine Learning has recently been painted as the master evil. In this blog I would like to suggest a different view, where we can use it to make a better...

CVE-2023-34242

CVE-2023-34242 affects Cilium prior to 1.13.4. When Gateway API is enabled, the absence of a namespace check for ReferenceGrant creation can let Cilium inadvertently gain visibility of secrets (including certificates) and services across namespaces. An attacker on an affected cluster could misuse...

Cyolo Product Overview: Secure Remote Access to All Environments

Operational technology OT cybersecurity is a challenging but critical aspect of protecting organizations' essential systems and resources. Cybercriminals no longer break into systems, but instead log in – making access security more complex and also more important to manage and control than ever...

Design/Logic Flaw

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. When run in debug mode, Cilium will log the contents of the cilium-secrets namespace. This could include data such as TLS private keys for Ingress and GatewayAPI resources. An attacker with access to debug...

CVE-2023-29002

Cilium (eBPF-based dataplane) in debug mode logs contents of the cilium-secrets namespace, potentially exposing TLS private keys for Ingress/GatewayAPI. This could enable an attacker with access to debug output to intercept/modify traffic to the cluster. The issue occurs at agent restart, on secr...

Choosing a Hybrid Cloud Security Solution 101

Explore helpful tips for choosing the right hybrid cloud security solution to address cybersecurity challenges of today and tomorrow...

Choosing a Hybrid Cloud Security Solution 101

Explore helpful tips for choosing the right hybrid cloud security solution to address cybersecurity challenges of today and tomorrow...

Command Execution Vulnerability in Elkeid of Beijing Jitterbug Information Service Co.

Elkeid is a cloud-native host-based security intrusion detection and risk identification solution. A command execution vulnerability exists in Elkeid by Beijing Jitterbug Information Service Co. that can be exploited by an attacker to execute arbitrary commands with elevated privileges on HOST...

CVE-2023-27594

CVE-2023-27594 affects Cilium (eBPF dataplane) where, under specific conditions with IPv6 routing and NodePorts, source IP attribution can misidentify external traffic as coming from the host, potentially bypassing cluster network policies. Affected runtimes are prior to 1.11.15, 1.12.8, and 1.13...

Fines as a Security System

Tile has an interesting security solution to make its tracking tags harder to use for stalking: The Anti-Theft Mode feature will make the devices invisible to Scan and Secure, the companys in-app feature that lets you know if any nearby Tiles are following you. But to activate the new Anti-Theft...

5 cybersecurity capabilities announced at Microsoft Ignite 2022 to help you secure more with less

Protecting your business against growing security threats is a huge priority. Companies of all sizes have increased their spending on cybersecurity solutions to protect their operations over the last year. User spending for the information security and risk management market will grow to USD169.2...

Samsung KnoxCustomManagerService Access Control Error Vulnerability

Samsung KnoxCustomManagerService is an open source Android platform-based security solution from South Korea's Samsung Samsung that can enhance security across the board through a combination of physical means and software systems, while being perfectly compatible with the Android and Google...

Samsung KnoxSDK input validation error vulnerability

Samsung KnoxSDK is an open source Android platform-based security solution from Samsung Samsung in South Korea that can enhance security across the board through a combination of physical means and software systems, while being perfectly compatible with the Android and Google ecosystems, bringing...

Samsung Knoxguard authorization error vulnerability

Samsung Knoxguard is an open source Android platform-based security solution from Samsung Samsung in South Korea that can enhance security across the board through a combination of physical means and software systems, while being perfectly compatible with the Android and Google ecosystems, bringi...

Building on Your Existing DAM Instance is Smart Budget Planning

For organizations that use it, Imperva’s DAM Gateway is the workhorse of data auditing and security. Today, the explosion of data and data repositories that organizations need to manage - both on-premises and in cloud environments - requires a more flexible, higher-capacity technology platform to...

Fortinet FortiClient for Windows权限提升漏洞

Fortinet FortiClient is a mobile endpoint security solution from Fortinet, Inc. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance, and two-factor authentication when connected to a FortiGate firewall appliance. executable file in the FortiClient installer...