Sysdig

Ten years ago, we announced Falco with a simple goal: bring real runtime visibility to cloud-native security. 🎉 175M+ container image pulls. 8,600+ GitHub stars. 1,600+ contributors. What it became is something much bigger. Watch the full celebration: okt.to/mqL2Jn #Falco #OpenSource #CloudSecurity #CNCF

Massive scale. Traffic surges. No room for guesswork.  See how @SquareEnix uses Sysdig for runtime visibility, faster investigations, and better vulnerability prioritization. Read the case study: okt.to/flnmuR

3 hours. 44 minutes. That's how long it took for active scanning to start after CVE-2026-44338 dropped. Advisory-to-exploitation windows are now measured in single-digit hours. Every AI project is a target. Full research from Sysdig TRT: okt.to/wiS9LD   #CloudSecurity #ThreatResearch #AIAgents

🚨 NEW: the Sysdig Threat Research Team has identified what appears to be the FIRST published case of a threat actor using a NATS server as command-and-control infrastructure. We’re calling this “NATS-as-C2.” ↳ The full breakdown: okt.to/oSnui0 #CyberSecurity

AI coding agents act with your permissions. But what's actually watching what they do? Introducing Prempti: open source runtime security for AI coding agents, powered by Falco. Allow, deny, or ask before any action executes. Learn more: okt.to/4qLOwJ  #CloudSecurity #OpenSource #Falco #AIAgents

The tools making developers more productive are the same ones being weaponized against them. @sysdig's @lorisdegio on what AI has done to the speed and scale of attacks, and what defenders need to do about it. Full conversation: okt.to/SZpvRn #CloudSecurity #AIAgents #CyberSecurity

With public exploit code already available, defenders should assume any local foothold on an unpatched Linux system (including from within a container) can rapidly become root access. ↳ Get the full breakdown:  okt.to/k93xez

We asked @Sysdig moms what their kids think they do for work. 👧 "She talks to Candy Crush." 👦 "She makes sure no one touches computers all day." 👧 "She talks about how to stop bad guys getting in your iPad." Happy Mother's Day to every mom keeping the cloud safe. 💐 #WomenInSecurity

First CNAPP built natively inside AI coding platforms. Not integrated. Not bolted on. Native. This is the Sysdig Headless Cloud Security demo you can't miss. 👇 sysdig.com/products/headl… #CloudSecurity #HeadlessCloudSecurity #CNAPP

Headless has hit the cloud security space.   The model we've relied on for years is breaking. AI agents don't click buttons. They don't wait. They act. So we rebuilt security for that reality. Introducing Headless Cloud Security from @Sysdig. 🚨 Watch the video and learn more: okt.to/6LwGQT

Attackers move in minutes. Is your cloud security keeping up? 🔍 Join us + @GigaOm this Wednesday (May 7, 9:30 AM PT) to find out what the latest Cloud Workload Security Radar means for your defense strategy. Register: okt.to/sB3n8k

Security work should feel productive. Alerts get triaged. Vulns get patched. Tickets get closed. But why doesn’t risk change? Mambu fixed this by focusing on runtime context—cutting false positives ~95% and prioritizing real exposure. Read >>> okt.to/2pmgS7

🚨 New from the Sysdig Threat Research Team: Linux kernel flaw CVE-2026-31431 (Copy Fail) Read the full breakdown >>> okt.to/mIKe8x

Only 2.8% of identities are human. The rest? Autonomous, machine-driven, & growing fast. Static reviews won’t hold the line. Security must move to continuous, automated governance. Get more insights from the 2026 Cloud-Native Security & Usage Report: okt.to/UWE8u3

Risk is no longer just about what exists. It’s about what’s actually running. That’s why Sysdig was named a Leader and Fast Mover, recognized for our deep runtime visibility, expertise in container & K8 security, and Sysdig Sage™. Read the report: okt.to/XYo1Q3

📢 New from @Sysdig Threat Research: CVE-2026-42208 is a critical pre-auth SQL injection in LiteLLM, an open-source gateway for OpenAI, Anthropic, and more. It was a very targeted AI attack: • Direct access to API keys, provider creds, env configs • Clear schema awareness (Prisma casing) • Precise column enumeration • Infra rotation mid-attack AI gateways centralize high-value credentials, making them prime targets. Patch. Rotate. Lock down. Full article >>> okt.to/pb80hZ

Cloud workload security can’t stop at posture checks. ⚠️ Join Sysdig and @gigaom on May 7 to learn how teams are moving from detection to real-time defense in container and #Kubernetes environments. Register: okt.to/GCIBkY

AI in security isn’t just better summaries and polished dashboards. 🙅 The real shift is agentic cloud security: systems that observe, reason, and help drive action in real time. 🤖☁️ Read the article to learn more: okt.to/xMOGdE

🚨 From disclosure to exploitation in just 12 hours.  A newly disclosed SSRF vulnerability in LMDeploy (CVE-2026-33626) was exploited shortly after the GitHub advisory was published, with no public PoC available. ↳ Read the full breakdown okt.to/xjAYPC