BlueRock.io

“Your complex codebase is the enemy of security.” BedRock your organization against threats and strengthen your security by reducing the attack surface. See how it works: https://lnkd.in/dgDYHH8 #cybersecurity #cyberdefense #cyberattack #activesecurity #BHV

Are you a #PlatformEngineering or #DevSecOps person? Are you headed #KubeCon NA in Salt Lake City? So are we! And we'd like to show you how #ShiftingDown with our agent-less runtime #security solution can help you cut down on alerts, reduce costs by securely consolidating #k8s clusters, and generally make your developers' lives easier! Get in touch to schedule a meeting! https://lnkd.in/gX6um-y6

Local Privilege Escalation (LPE) is a critical phase in most attacks. Once an attacker has a foothold within a compromised Linux container, an LPE exploit is how attackers achieve root-level access, break out of the container, and cause additional harm.

Google's kernelCTF team discovered #CVE 2024-26581 and has released a PoC for this Local Privilege Escalation (LPE) vulnerability. Here's a break-down of how BlueRock protects against this (and other) similar attacks. https://lnkd.in/gYx83wSi

Bluerock.io was recently featured in Forbes , where we shared insights on advancing cloud security through real-time prevention. The article explores essential strategies to protect cloud environments effectively and seamlessly, aligning with our...

Our co-founder and CEO Bob Tinker shares some insights on how real-time prevention complements and improves existing #cloud #security practices. https://lnkd.in/eQH3jq4F

Hyperbole aside, #OpenSource Software (#OSS) did have some troubling disclosures during the final week of the month. On March 26th, a vulnerability researcher using the handle notselwyn published an extremely detailed writeup of CVE-2024-1086 , a...

By now, David J. Bianco’s Pyramid of Pain should be well-known to defenders: originally published in 2013 (with minor updates in 2014), the model provides a succinct categorization of attack indicators and the corresponding difficulty adversaries have...

In the same way that Linux and containers have become the foundation of modern application development, Enhanced Berkeley Packet Filter (eBPF) has become the de facto technology for observability—and therefore security—for Linux and containers....

Carl Jung is credited as having said “The pendulum of the mind oscillates between sense and nonsense, not between right and wrong” (emphasis mine) which succinctly captures the essence of a lot of human thought, not least in cybersecurity. Pendulums...