logo
episode-header-image
Oct 2020
18m 59s

It's still possible to find ways to brea...

N2K Networks
About this episode

Containers offer speed, performance, and portability, but do they actually contain? While they try their best, the shared kernel is a disturbing attack surface: a mere kernel vulnerability may allow containerized processes to escape and compromise the host. This issue prompted a new wave of sandboxing tools that use either unikernels, lightweight VMs or userspace-kernels to separate the host OS from the container's OS.

One of these solutions is Kata Containers, a container runtime that spawns each container inside a lightweight VM, and can function as the underlying runtime in Docker and Kubernetes. Kata's virtualized containers provide two layers of isolation: even if an attacker breaks out of the container, he is still confined to the microVM.

Joining us in this week's Research Saturday to discuss the research is Yuval Avrahami from Palo Alto Networks Unit 42.

The research presented at Black Hat USA 2020 can be found here: 

Learn more about your ad choices. Visit megaphone.fm/adchoices

Up next
Yesterday
No honor among thieves. [Research Saturday]
John Fokker, Head of Threat Intelligence at Trellix is discussing "Gang Wars: Breaking Trust Among Cyber Criminals." Trellix researchers reveal how the once-organized ransomware underworld is collapsing under its own paranoia. Once united through Ransomware-as-a-Service programs, ... Show More
25m 3s
Oct 10
When the breachers get breached.
International law enforcement take down the Breachforums domains. Researchers link exploitation campaigns targeting Cisco, Palo Alto Networks, and Fortinet. Juniper Networks patches over 200 vulnerabilities. Apple and Google update their bug bounties. Evaluating AI use in applica ... Show More
28m 50s
Oct 9
Cyber defenders pulled into deportation duty.
DHS reassigns cyberstaff to immigration duties. A massive DDoS attack disrupts several major gaming platforms. Discord refuses ransom after a third-party support system breach. Researchers examine Chaos ransomware and creative log-poisoning web intrusions. The FCC reconsiders its ... Show More
29m 49s
Recommended Episodes
Mar 2024
NAN058: The Story of containerlab with Roman Dodin (Part 2)
Welcome back for Part 2 of Eric’s interview with Roman Dodin, co-creator of containerlab. Roman describes containerlab as a “lab as code” tool that quickly and easily creates virtual networking topologies. With increased automation and containerization in network engineering, the ... Show More
34m 18s
Mar 2024
HN727: Kubernetes Networking Essentials
Where there are containers, there is networking. Today we dig into the networking that underlies Kubernetes, the open source orchestration platform for container-based applications. Our guest Karim El Jamali takes us through the essential concepts: Nodes, pods, clusters, CNIs, vi ... Show More
1h 6m
Nov 2023
Testcontainers to Reduce Developer Frustration
Eli Aleyner (@ealeyner, Co-founder at @AtomicJarInc) talks about the issues with shifting left and how to reduce developer frustration with Testcontainers. SHOW: 769CLOUD NEWS OF THE WEEK - http://bit.ly/cloudcast-cnotwNEW TO CLOUD? CHECK OUT - "CLOUDCAST BASICS"SHOW SPONSORS:Clo ... Show More
29m 48s
Aug 2023
Azure VMware Solution: Cost-Effective, Performant, and Resilient Hybrid Cloud Powered by Pure
Dig deeper into the exciting news around Pure's Azure VMware Solution announcement leveraging our strong partnerships with VMware and Microsoft to deliver faster, more cost effective adoption of cloud services. Hear from Jason Langer, Sr. Cloud Solutions Manager and VMware guru a ... Show More
37m 45s
May 2023
Docker for .NET Devs With Carl Sargunar
Remember: you can also always follow the show on Twitter @dotnetcoreshow, and the shows host on Twitter @podcasterJay or visit our Contact page. Welcome to season 5 of the award-winning .NET Core Podcast! Check that link for proof. Hello everyone and welcome to THE .NET Core Podc ... Show More
1h 6m
Feb 2018
The Containers_Derby
The rise of Container technologies opens a new frontier for developers, simplifying the movement of work from machine to machine. As Containers become more popular, though, a new battle emerges. This race is for the control of orchestration and involves the industry’s fastest, st ... Show More
25m 30s
Jan 2024
How to build a role-playing video game in 24 hours
Now you know: The human body can serve as a resonance chamber for remote car keys, effectively extending their range.A hackathon team used GenAI can create a fully playable D&D-style game in just one day.Skybox AI from Blockade Labs allows users to generate 360° skybox experience ... Show More
14m 14s
Nov 2016
Preslav Le on How Dropbox Moved off AWS and What They Have Been Able to Do Since
As InfoQ previously reported in March 2016, Dropbox announced that they had migrated away from Amazon Web Services (AWS). In this week's podcast Robert Bluman talks to Preslav Le. Preslav has been a software engineer at Dropbox for the past three years, contributing to various as ... Show More
26m 16s
May 2023
2373: Navigating Kubernetes Complexity With Fairwinds CEO
In this episode of Tech Talks Daily, I am joined by Bill Ledingham, CEO of Fairwinds, a company dedicated to helping businesses deploy and manage cloud-native applications at scale. we dive into the complexities of Kubernetes and discuss how Fairwinds Insights simplifies the proc ... Show More
23m 38s
Listen to millions of songs and podcasts on Anghami