supply-chain-security
How TeamPCP Compromised (again) LiteLLM
TeamPCP strikes again. The popular Python package litellm (versions 1.82.7 and 1.82.8) was compromised on PyPI, deploying a credential harvester and Kubernetes backdoor.
kubernetes security
ai-security
The AI-BOM Strategy: Securing the Trust Boundaries of Your AI Stack
AI security goes beyond the model. Explore the critical risks defined in the AI-BOM framework, from LLMjacking and trust boundaries to infrastructure vulnerabilities, and learn how to secure every layer of your AI stack.
cybersecurity
Tipping Point: Kubernetes Announces Ingress-NGINX Retirement
The community-driven Ingress-NGINX controller is retiring. Explore the reasons, its link to the critical 'IngressNightmare' vulnerability, and what this means for your Kubernetes security and migration strategy.
cloud-security
Kubernetes Security: Top 10 Actions to Take Now
A CISO's guide to Kubernetes security, based on authoritative guidance from the NSA and CISA. Discover the top 10 critical, high-impact actions you must take to harden your clusters.