The ticking supply chain attack bomb of exposed Kubernetes secrets, with Assaf Morag and Yakir Kadkoda

Update: 2024-06-18

Description

In this KubeFM episode, Yakir and Assaf from Aqua Security explore how a robust Kubernetes secrets strategy is necessary to prevent leaks and maintain a strong security posture.

You will learn:

How Kubernetes secrets are leaked, and what tools can you use to prevent that (Hint: Yakir and Assaf suggested using more than one.)
How shadow IT is a more significant threat you might think and why companies should monitor personal Github repositories.
What happens when a secret is leaked and how attackers exploit your resources (or further gain access to more).

Sponsor

This episode is sponsored by Isovalent — watch the top Kubernetes security use cases that Tetragon and eBPF cover for platform teams

More info

Find all the links and info for this episode here: https://kube.fm/exposed-secrets-yakir-assaf
Interested in sponsoring an episode? Learn more.

Comments

Top Podcasts

The Best New Comedy Podcast Right Now – June 2024 The Best News Podcast Right Now – June 2024 The Best New Business Podcast Right Now – June 2024 The Best New Sports Podcast Right Now – June 2024 The Best New True Crime Podcast Right Now – June 2024 The Best New Joe Rogan Experience Podcast Right Now – June 20 The Best New Dan Bongino Show Podcast Right Now – June 20 The Best New Mark Levin Podcast – June 2024

In Channel

The hater's guide to Kubernetes, with Paul Butler

2024-11-1243:25

Kubernetes webhooks explained and Aspect Oriented Programming, with Gordon Myers

2024-11-0526:29

98% faster data imports in deployment previews, with Nick Nikitas

2024-10-2919:04

When Kubernetes and Go don't work well together, with Emin Laletović

2024-10-2225:56

Declarative configuration and the Kubernetes Resource Model, with Brian Grant

2024-10-1552:30

Comparing GitOps: Argo CD vs Flux CD, with Andrei Kvapil

2024-10-0830:37

Kubernetes is simple: it's just Linux, with Eric Jalal

2024-10-0148:50

Configuring requests & limits with the HPA at scale, with Alexandre Souza

2024-09-2452:43

Tortoise: outpacing the optimization challenges in Kubernetes, with Kensei Nakada

2024-09-1758:49

How we are managing a container platform with Kubernetes, with Ángel Barrera Sánchez

2024-09-1049:02

The basics of observing Kubernetes: a bird-watcher's perspective, with Miguel Luna

2024-09-0342:38

Abusing Distroless containers: shell commands on shell-less containers, with Harsha Koushik

2024-08-2731:22

The ticking supply chain attack bomb of exposed Kubernetes secrets, with Assaf Morag and Yakir Kadkoda

2024-06-1850:40

From 0 to 10k builds a week with self-hosted Jenkins on Kubernetes, with Stéphane Goetz

2024-06-1148:06

Platform engineering: learning from the Kubernetes API, with Sven Hans Knecht

2024-06-0455:30

Hacking Alibaba Cloud's Kubernetes cluster, with Ronen Shustin and Hillai Ben-Sasson

2024-05-2844:26

CoreDNS will fail you at scale (with default settings), with Mohamed Hamdan Faris S M

2024-05-2134:50

The best operating system for Kubernetes, with Mircea-Pavel Anton

2024-05-1439:58

Observability will speed up your Kubernetes troubleshooting, with Jennifer Luther Thomas

2024-05-07--:--

The good, the bad and the ugly of templating YAML in Kubernetes, with Alexander Block

2024-04-3036:20

00:00

1.0x

The ticking supply chain attack bomb of exposed Kubernetes secrets, with Assaf Morag and Yakir Kadkoda

#box-pro-ellipsis-173163876455762{-webkit-line-clamp:2;}The ticking supply chain attack bomb of exposed Kubernetes secrets, with Assaf Morag and Yakir Kadkoda

The ticking supply chain attack bomb of exposed Kubernetes secrets, with Assaf Morag and Yakir Kadkoda

The ticking supply chain attack bomb of exposed Kubernetes secrets, with Assaf Morag and Yakir Kadkoda