Unleashing the CNCF’s Project Falco to Combat Accelerated Cloud Threats

1:10 - 1:55 PM ET ; Novella Room​

Have you ever wanted to understand how modern attackers access and infect cloud accounts so quickly? This ​workshop is your chance. Attendees will gain hands-on experience running a refined and high-speed attack ​in the public cloud, and then use Falco and its open source ecosystem to detect and alert on it, gaining ​practical cybersecurity skills.

Sysdig, a steward of the open source CNCF project Falco, recently discovered a sophisticated and speedy ​cloud attack called SCARLETEEL. This attack starts from a compromised Kubernetes container and moves ​laterally using public cloud APIs and identities to infect the victim's cloud account, ultimately stealing ​proprietary application code and other data. Fortunately, we can use Falco to detect not only threats in ​containers, but also how public cloud APIs are being used against us. In the workshop we will replicate this ​attack, but we’ll have Falco to detect it!

One of the reasons for using the cloud is speed. It takes no time at all to spin up cloud resources. But that ​same speed can be used against us by malicious actors who can use the same APIs we use to automate and ​accelerate their attacks, and then move laterally through our cloud environments at lightning speed. Today, ​we have only minutes to identify and remediate cloud attacks. We no longer have the luxury of time. We ​need to move fast, and so do our tools, just like Falco does.

Visit us @ ca.kubehuddle.com

Grab your ticket @ Ticket Tailor