logo
episode-header-image
Oct 2020
18m 59s

It's still possible to find ways to brea...

N2K Networks
About this episode

Containers offer speed, performance, and portability, but do they actually contain? While they try their best, the shared kernel is a disturbing attack surface: a mere kernel vulnerability may allow containerized processes to escape and compromise the host. This issue prompted a new wave of sandboxing tools that use either unikernels, lightweight VMs or userspace-kernels to separate the host OS from the container's OS.

One of these solutions is Kata Containers, a container runtime that spawns each container inside a lightweight VM, and can function as the underlying runtime in Docker and Kubernetes. Kata's virtualized containers provide two layers of isolation: even if an attacker breaks out of the container, he is still confined to the microVM.

Joining us in this week's Research Saturday to discuss the research is Yuval Avrahami from Palo Alto Networks Unit 42.

The research presented at Black Hat USA 2020 can be found here: 

Learn more about your ad choices. Visit megaphone.fm/adchoices

Up next
Today
MK Palmore: Lead from where you stand. [CISO] [Career Notes]
Please enjoy this encore of Career Notes. Director of Google Cloud's Office of the CISO, MK Palmore, dedicated much of his life to public service and now brings his experience working for the greater good to the private sector. A graduate of the US Naval Academy, including the Na ... Show More
9m 10s
Today
Click here to steal. [Research Saturday]
Today we are joined by ⁠Selena Larson⁠, Threat Researcher at ⁠Proofpoint⁠, and co-host of ⁠Only Malware in the Building⁠, as she discusses their work on "Amatera Stealer - Rebranded ACR Stealer With Improved Evasion, Sophistication." Proofpoint researchers have identified Amatera ... Show More
28m 11s
Yesterday
Behind the firewall, trouble brews.
Fortinet patches a critical flaw in its FortiWeb web application firewall. Hackers are exploiting a critical vulnerability in Wing FTP Server. U.S. Cyber Command’s fiscal 2026 budget includes a new AI project. Czechia’s cybersecurity agency has issued a formal warning about Chine ... Show More
31m 49s
Recommended Episodes
Mar 2024
NAN058: The Story of containerlab with Roman Dodin (Part 2)
Welcome back for Part 2 of Eric’s interview with Roman Dodin, co-creator of containerlab. Roman describes containerlab as a “lab as code” tool that quickly and easily creates virtual networking topologies. With increased automation and containerization in network engineering, the ... Show More
34m 18s
Mar 2024
HN727: Kubernetes Networking Essentials
Where there are containers, there is networking. Today we dig into the networking that underlies Kubernetes, the open source orchestration platform for container-based applications. Our guest Karim El Jamali takes us through the essential concepts: Nodes, pods, clusters, CNIs, vi ... Show More
1h 6m
Nov 2023
Testcontainers to Reduce Developer Frustration
Eli Aleyner (@ealeyner, Co-founder at @AtomicJarInc) talks about the issues with shifting left and how to reduce developer frustration with Testcontainers. SHOW: 769CLOUD NEWS OF THE WEEK - http://bit.ly/cloudcast-cnotwNEW TO CLOUD? CHECK OUT - "CLOUDCAST BASICS"SHOW SPONSORS:Clo ... Show More
29m 48s
Aug 2023
Azure VMware Solution: Cost-Effective, Performant, and Resilient Hybrid Cloud Powered by Pure
Dig deeper into the exciting news around Pure's Azure VMware Solution announcement leveraging our strong partnerships with VMware and Microsoft to deliver faster, more cost effective adoption of cloud services. Hear from Jason Langer, Sr. Cloud Solutions Manager and VMware guru a ... Show More
37m 45s
May 2023
Docker for .NET Devs With Carl Sargunar
Remember: you can also always follow the show on Twitter @dotnetcoreshow, and the shows host on Twitter @podcasterJay or visit our Contact page. Welcome to season 5 of the award-winning .NET Core Podcast! Check that link for proof. Hello everyone and welcome to THE .NET Core Podc ... Show More
1h 6m
Feb 2018
The Containers_Derby
The rise of Container technologies opens a new frontier for developers, simplifying the movement of work from machine to machine. As Containers become more popular, though, a new battle emerges. This race is for the control of orchestration and involves the industry’s fastest, st ... Show More
25m 30s
Jan 2024
How to build a role-playing video game in 24 hours
Now you know: The human body can serve as a resonance chamber for remote car keys, effectively extending their range.A hackathon team used GenAI can create a fully playable D&D-style game in just one day.Skybox AI from Blockade Labs allows users to generate 360° skybox experience ... Show More
14m 14s
Nov 2016
Preslav Le on How Dropbox Moved off AWS and What They Have Been Able to Do Since
As InfoQ previously reported in March 2016, Dropbox announced that they had migrated away from Amazon Web Services (AWS). In this week's podcast Robert Bluman talks to Preslav Le. Preslav has been a software engineer at Dropbox for the past three years, contributing to various as ... Show More
26m 16s
May 2023
2373: Navigating Kubernetes Complexity With Fairwinds CEO
In this episode of Tech Talks Daily, I am joined by Bill Ledingham, CEO of Fairwinds, a company dedicated to helping businesses deploy and manage cloud-native applications at scale. we dive into the complexities of Kubernetes and discuss how Fairwinds Insights simplifies the proc ... Show More
23m 38s
Listen to millions of songs and podcasts on Anghami