Sysdig

7.7K posts

Sysdig banner
Sysdig

Sysdig

@sysdig

The leader in real-time cloud security

San Francisco, CA Katılım Ocak 2014
1.3K Takip Edilen10.3K Takipçiler
Sysdig
Sysdig@sysdig·
"If I was doom and gloom about security, I'd have quit and bought a dairy farm in Wisconsin." 🌾 @Sysdig's Crystal Morin on why optimism about AI security is actually justified. Full episode on YouTube: okt.to/ozKHt1  #CloudSecurity #AISecurity
Sysdig tweet media
English
0
1
4
182
Sysdig
Sysdig@sysdig·
Should you build your own AI SOC? Probably yes, at first. Building teaches you what no vendor demo will. But at scale, it becomes a different question entirely. Build to learn. Know when to stop. Crystal Morin breaks down where that line is: okt.to/t4Of2L #CloudSecurity #AIAgents #SOC #SecurityStrategy
Sysdig tweet media
English
0
1
2
216
Sysdig
Sysdig@sysdig·
AI coding agents write code, install dependencies, and execute commands automatically. No PR. No review. No human approval. The question isn't whether your team will use them. It's whether you can see what they're doing. Watch: okt.to/3Gr9gN  #CloudSecurity #AIAgents #RuntimeSecurity
English
0
1
1
208
Sysdig
Sysdig@sysdig·
Open source runtime security isn't growing because engineers like open source. It's growing because the operational model fits the moment. 9,000+ organizations. 34.43% from Europe alone. Falco's growth is a market signal. Final article in our series: okt.to/E4HxMv  #CloudSecurity #Falco #OpenSource #RuntimeSecurity
Sysdig tweet media
English
1
1
5
290
Sysdig
Sysdig@sysdig·
The Sysdig TRT just documented what we assess to be the first-ever agentic ransomware operation. We're calling the operator JADEPUFFER. It exploited CVE-2025-3248 in an internet-facing Langflow instance, then ran a fully autonomous, end-to-end extortion campaign — lateral movement, credential harvesting, and database destruction. Read the full research: okt.to/2RLw3c
GIF
English
5
6
14
622
Sysdig
Sysdig@sysdig·
The Sysdig TRT has had a busy month. Crystal Morin and Michael Clark are breaking it all down live on LinkedIn next week. 🔒 On the agenda: ➝ AI agent-driven container escape ➝ LLM jailbreaking with CTF framing ➝ LLMjacking evolving into autonomous offensive tooling ➝ Why CVSS 9.9 gets exploited less than 9.3 Join us live: okt.to/qiWy7f  #CloudSecurity #ThreatResearch #AIAgents #LLMSecurity
Sysdig tweet media
English
0
1
1
378
Sysdig
Sysdig@sysdig·
Human identities make up 2.8% of all cloud identities. Everything else is a machine. The modern cloud perimeter is overwhelmingly nonhuman, and it's growing faster than any human review process can keep up with. Latest article: okt.to/8e967R  #CloudSecurity #IdentitySecurity #CIEM
Sysdig tweet media
English
1
1
2
242
Sysdig
Sysdig@sysdig·
AI isn't the future of security. It's happening now. The same tools making security more accessible to engineers are available to attackers too. That's not a future risk. It's the current reality. Runtime protection has never mattered more. Read the blog: okt.to/Uah5Fc   #CloudSecurity #AIAgents #RuntimeSecurity #Falco
Sysdig tweet media
English
1
2
7
263
Sysdig
Sysdig@sysdig·
Every attack needs a way in. In containerized environments, it's usually a weakness hiding somewhere in the stack. One vulnerable package in a container image is all it takes. Kat breaks it down in under a minute. 👇 #CloudSecurity #ContainerSecurity #Falco
English
0
1
1
224
Sysdig
Sysdig@sysdig·
AI isn't a feature anymore. It's infrastructure. And once you think about it that way, the security priorities become clear: govern access, secure APIs, monitor runtime behavior, treat agent infrastructure as part of your real attack surface. Latest article: okt.to/PVMDA1  #CloudSecurity #AIInfrastructure #RuntimeSecurity
Sysdig tweet media
English
0
1
2
170
Sysdig
Sysdig@sysdig·
An operator RCE'd a Langflow box, swept env vars, and stole Azure service principal creds, then LLMjacked an Azure AI Foundry endpoint serving Anthropic models. AWS is easy to catch: everyone has CloudTrail. Azure is tough: few stream Entra sign-ins, so a stolen SP trips nothing.
English
0
1
3
262
Sysdig
Sysdig@sysdig·
🚨 LLMjacking has evolved. A threat actor used an exposed Ollama server as the brain for an autonomous, multi-stage offensive hacking tool. Not reselling access. Building with it. Sysdig TRT caught the tool while it was still in development. Full research: okt.to/i0EQ1c #CloudSecurity #ThreatResearch #AIAgents #LLMSecurity
Sysdig tweet media
English
1
1
3
263
Sysdig
Sysdig@sysdig·
🚨 LLMjacking has evolved. A threat actor used an exposed Ollama server as the brain for an autonomous, multi-stage offensive hacking tool. Not reselling access. Building with it. Sysdig TRT caught the tool while it was still in development. Full research: okt.to/5HNlEX #CloudSecurity #ThreatResearch #AIAgents #LLMSecurity
Sysdig tweet media
English
0
1
2
303
Sysdig
Sysdig@sysdig·
🚨 LLMjacking has evolved. A threat actor used an exposed Ollama server as the brain for an autonomous, multi-stage offensive hacking tool. Not reselling access. Building with it. Sysdig TRT caught the tool while it was still in development. Full research: okt.to/5HNlEX #CloudSecurity #ThreatResearch #AIAgents #LLMSecurity
Sysdig tweet media
English
0
0
0
187
Sysdig
Sysdig@sysdig·
🚨 LLMjacking has evolved. A threat actor used an exposed Ollama server as the brain for an autonomous, multi-stage offensive hacking tool. Not reselling access. Building with it. Sysdig TRT caught the tool while it was still in development. Full research: okt.to/5HNlEX #CloudSecurity #ThreatResearch #AIAgents #LLMSecurity
Sysdig tweet media
English
0
0
0
472
Sysdig
Sysdig@sysdig·
Happy Father's Day to the Sysdig dads. We asked for their best dad jokes. We regret nothing. 😅 "Has anyone seen the cybersecurity team? All I know is that they ran-som-ware." 😆 Thanks for keeping the cloud secure and the jokes consistently terrible. 💚 #FathersDay #LifeAtSysdig okt.to/pS6x3G
English
0
2
3
237