« All Videos

Recorded Videos

Live Hack: Hack My Mis-Configured Kubernetes

Date: November 4

Time: 9:00AM PST (UTC-8)

Topic: Webinars

Speaker(s): Or Kamara, Developer Team Lead, Snyk

Join Us for a Complimentary Live Webinar Sponsored by Snyk

Abstract
In the last few years, we’ve seen more and more responsibilities shift left – to development teams. With the widespread adoption of Kubernetes, we’re now seeing configurations become a developer issue first and foremost. This responsibility means that developers need to be aware of the security risks involved in their configurations.

Just by themselves, those configuration security risks might not be so harmful. But with other vulnerable components in the production environment, like the libraries used in the application, or a malicious container, potential attackers can build a multi-steps attack vector, using all of these risks together. As developers, we should give the necessary attention to those risks, and make sure that our applications and clusters are as secure as possible.

In this live hacking presentation, we demonstrate some of the key security issues that affect your Kubernetes configuration, including:

  • SecurityContext pitfalls like Privileged pods
  • Running pods without resource limitations

We explain what they actually mean, what an attacker can do to your cluster, and how you can fix them.

This webinar is sponsored by Snyk and hosted by The Linux Foundation.

Speaker
Or Kamara, Developer Team Lead, Snyk

Or Kamara is a development team lead at Snyk, a developer-first security company that helps organisations use open source and stay secure. Or has led the development of complex cyber security projects, and has over ten years experience in software engineering, research, and project management. Prior to Snyk, Or served as a senior security researcher & developer and as a team lead in the prime minister office of Israel.

Sponsored By

Snyk Logo

More Webinars

LFX Insights: Get a 360° View of Your Project Watch Now

LFX Insights: Get a 360° View of Your Project

January 14th, 2021
9:00 AM PST (UTC-8)
LF Live Webinar Watch Now

Open Source Licensing

January 13th, 2021
10:00AM - 11:30AM PST (UTC-8)
Webinar - Deliver Your App Anywhere … Publicly or Privately Watch Now

Deliver Your App Anywhere … Publicly or Privately

December 17th, 2020
10:00AM PST (UTC-8)
Webinar - Deploying a Database on (not next to) Kubernetes Watch Now

Deploying a Database on (not next to) Kubernetes

December 9th, 2020
10:00AM PST (UTC-8)
LF Live Webinar Watch Now

How Do I Get Started with an Open Source Project?

December 2nd, 2020
10:30AM PST (UTC-8)
LF Live Webinar Watch Now

Best Practices to Getting Your Patches Accepted

December 2nd, 2020
10:30AM PST (UTC-8)
Webinar - Better Reliability with Service Level Objectives Watch Now

Better Reliability with Service Level Objectives (SLOs)

November 10th, 2020
10:10AM PST (UTC-8)
LF Live Webinar Watch Now

Writing Change Logs that Make Sense

October 29th, 2020
2:00 PM - 3:30PM GMT (UTC-7)
Webinar - Enabling Business Agility Through Open Technology Watch Now

Enabling Business Agility Through Open Technology

October 20th, 2020
9:00AM PST (UTC-7)
Webinar - Keeping an Eye on Your Node Apps Watch Now

Keeping an Eye on Your Node Apps

August 20th, 2020
11:00AM PST (UTC-7)
Webinar - Privacy Tech in A.I. Model Building Watch Now

Privacy Tech in A.I. Model Building

August 19th, 2020
10:30AM PST (UTC-7)