Building Operational Security in the Cloud: The Case for Partnership Between Infosec and Cloud Engineers
January 26, 2021
Following our successful webcast with 451 Research, Divided We Fail: How Security Teams Can Better Engage with DevOps, Fernando Montenegro answers questions in the video below, furthering the case for partnerships between Infosec and Cloud Engineers.
Coffee and Capsule8: Tales from the Cryptomining
November 23, 2020
If you’re curious about cryptomining and are interested in learning what it is, how folks are doing it, and how it could be impacting your organization (like that unexpected AWS bill!), join our live webcast series.
Exit Stage Left: Replacing Theater with Chaos
November 18, 2020
Recorded at Cloud Native Security Day 2020 Capsule8’s VP of Product Management and Product Strategy, Kelly Shortridge explores how security theater leads to increased organizational friction, especially in the realm of software delivery, rather than promoting safety. She’ll contrast these dramatics with a security chaos engineering approach – one which embraces the importance of convenience, […]
Divided We Fail: How Security Teams Can Better Engage with DevOps
November 11, 2020
Join Fernando Montenegro and Kelly Shortridge as they get to the heart of the relationship between security and DevOps and share tips for CISOs to help improve their engagement.
Ramping up with FedRAMP
October 9, 2020
Cynthia Burke, Capsule8 Program Manager, will give a high level overview of the Federal Risk and Authorization Management Program (FedRAMP) landscape and will discuss some of the challenges of and best practices for FedRAMP compliance using specific case study examples to help guide you and your team up the compliance hill with FedRAMP.
The ABCs of PMCs for Attack Detection
September 11, 2020
Capsule8 Product Demo
August 19, 2020
Secure production Linux systems at speed and scale Monitoring, Detection and Protection for Production Linux Environments Learn why organizations who need flexible production infrastructure security that embeds seamlessly into Linux systems choose Capsule8. The pioneer behind “ops-friendly” production security, Capsule8 delivers monitoring, detection and protection across cloud native and on prem private cloud environments. By […]
Deciphering SOC 2 Compliance in Cloud-Native Environments
August 18, 2020
Security Considerations for Cloud Migration During a Crisis
July 14, 2020
An evolving technology landscape can already make a well planned cloud migration strategy seem like a complex task, but as we’ve learned in the past few months, there are often additional challenges thrown into the works.
Linux and Containers: Brandon and Nick Hack Things Live
June 5, 2020
Join Capsule8 researchers Brandon Edwards (@drraid) and Nick Freeman (@0x7674) as they perform live hacking walk throughs of common container escape patterns and what signals they leave behind.
Between 2 Kernels: Joel Fulton – E06
April 15, 2020
Things get a bit macabre in our latest episode of B2K featuring reformed CISO Joel Fulton. The two talk about the problem with products, how being a CISO is like living in a survival horror role playing game, and how a golf course is a metaphor for pursuing security. https://www.youtube.com/watch?v=fiE7pbDaC2I&feature=emb_title Video Transcript Kelly Shortridge: Welcome […]
Rant: Security Teams Are Friends Not FUD
April 14, 2020
Security professionals expect their non-security colleagues to trust them and heed their advice. Yet their everyday practices often undermine any sense of trust and, well, security. From running phishing drills that cross the line from realistic to traumatic, to rolling out tools that break business-critical workflows (and uptime), it can be tough for security teams […]
Between 2 Kernels: Sounil Yu – E05
March 26, 2020
Sounil Yu lays out his framework for thinking about all variety of subjects on the latest episode of Between 2 Kernels with Kelly Shortridge. The two cover his sentiments on useless security products, AI-enabled quantum trust, and giving 3 year olds automatic weapons. https://www.youtube.com/watch?v=qJat6tWdWHs&feature=emb_title Video Transcript Kelly Shortridge: Welcome to Between Two Kernels. I am […]
Container Escape Demo
March 23, 2020
Watch a video demo of Capsule8 Protect in action detecting a container escape exploit. https://www.youtube.com/watch?v=Cit7icD4W2o
Between 2 Kernels: Ian Coldwater – E04
March 19, 2020
Video Transcript Kelly Shortridge: Welcome to another edition of Between Two Kernels. Today’s guest is Ian Coldwater, who has that one secret trick that means that containers hate them. Welcome, Ian. Ian Coldwater: Thank you. Kelly Shortridge: You’re welcome. Ian Coldwater: Really appreciate being here. Kelly Shortridge: So there’s a really big debate that happens […]
A Compendium of Container Escapes – Black Hat 2019
December 13, 2019
Learn the how and why container escapes work, starting from a brief intro to what makes a process a container, and then spanning the gamut of escape techniques, covering exposed orchestrators, access to the Docker socket, exposed mount points, /proc, all the way down to overwriting/exploiting the kernel structures to leave the confines of the […]
Capsule8 Investigations Quick Start with AWS Athena
December 10, 2019
Make It Work: The MITRE ATT&CK Framework and How to Put It Into Practice
November 18, 2019
MITRE ATT&CK is quickly becoming the de facto framework for security teams to strengthen their defenses — but with a constantly changing attack surface, especially when it comes to modern cloud infrastructure, how do you move beyond the theoretical to actually put it into practice? Join Brandon Edwards, chief scientist at Capsule8, and guest speaker […]
Deciphering Cryptominers with Capsule8
October 29, 2019
In this roundtable webinar, Decipher’s Dennis Fisher and Fahmida Rashid are joined by Capsule8’s Kelly Shortridge for an in-depth conversation on cryptomining’s emergence and what it means for cryptojacking as a threat consideration for businesses.
The Changing Security Landscape in a Cloud-Native Era
October 28, 2019
Join Capsule8, Obsidian Security, and Signal Sciences as we discuss the major cloud-native security challenges organizations face and the opportunities to meet them.
TAG Cyber: Interview with John Viega
July 25, 2019
TAG Cyber sits down with Capsule8 CEO John Viega to discuss how Capsule8 secures Linux production environments.
How Capsule8 Secures Production Linux Environments
July 18, 2019
Capsule8 protects high-performance Linux production environments – whether containerized, virtualized or bare-metal. The Capsule8 Protect platform detects and stops attacks in real-time, here’s how. https://www.youtube.com/watch?v=50ucW5UW9Bs&feature=emb_title
Between Two Kernels: Halvar Flake
July 10, 2019
Kelly chats with Halvar Flake, former Project Zero team member at Google and Co-Founder of optimyze. The two get philosophical about vendor tag lines, characterize his new start-up with buzzwords, and the differences between automation in offensive and defensive security work.
Between Two Kernels: Allan Alford
July 10, 2019
Kelly chats with CISO Allan Alford about being the most hated man in his organization, the three biggest mistakes of his life, and which infosec category he would date, marry, and kill.
Between Two Kernels: Art Coviello
July 10, 2019
Kelly catches up with Art Coviello at the 2019 RSA Conference talking about how he’d use the Infinity Gauntlet for the cybersecurity industry, infosec start ups and acquisitions, and how it feels to be Founder of the most hated information security conference.
Capsule8 Overview: What We Do
July 10, 2019
Learn what problems Capsule8 solves and how it can ease the burden on SecOps teams and provide visibility and security for Linux production infrastructure.
RSA Innovation Sandbox 2019
July 10, 2019
Watch CEO and Co-Founder John Viega’s RSA Innovation Sandbox presentation as a top 10 finalist at the 2019 RSA Conference.
Compliance and A False Sense of Security
June 4, 2019
Understand in depth the unique challenges of compliance in this new cloud-native world, as well as share best practices for not only meeting compliance standards, but truly protecting your production environment.
Doing DevSecOps Right: Implementation & the Metrics that Matter
May 3, 2019
Join Amy DeMartine and Kelly Shortridge, vice president of product strategy at Capsule8, to learn not only how to implement DevSecOps, but also the KPIs and metrics you should measure to make sure your company is continuously reducing risk.
Digging Down into Resilient Infrastructure
April 9, 2019
During our 20/20 webcast Resilience is not futile, we discussed the importance of building resilience into your security program. As we continue our discussion on cyber resilience, we’ll take a deeper dive into determining your resilience, looking at what components constitute a resilient framework and how to measure if your framework is making an impact. […]
Resilience is Not Futile
February 12, 2019
Not every company is able to survive a breach or disaster. Poor planning, such as having your server backups in the same general area as your data center after an earthquake or flood, or a poorly defined incident response plan could lead to a company not being able to restore their systems after a breach […]
A Look Back at Attacks in 2018
December 14, 2018
Join Co-founder and Chief Scientist of Capsule8, Brandon Edwards for a review of the worst vulnerabilities and breaches of 2018 and a discussion of what lies ahead.
The Long Tail of Zero Day Attacks
November 21, 2018
This webcast takes a look at how companies are still fighting the battle of zero days disclosed months or even years ago, the fallacy of the patch, and why continued detection is important.
KubeCon Encore: How To Prevent Attacks At Scale on Cloud-Native Environments
December 8, 2017
One of the biggest implementation challenges of the cloud-native world of Linux, containers, and microservices is making sure they are secure, but no matter how sure you are, there will be a breach. As we’ve seen time and again with zero-day exploits and incomplete patches on base OSs, there must be a Plan B. Following […]
Attacking Kubernetes – Live Security Attacks with Dino Dai Zovi
October 2, 2017
In this lightning talk, Dino Dai Zovi, CTO at Capsule8, demos some live security attacks against containers running in Kubernetes deployments to illustrate what really needs to be defended against. Watch now.
Securing Cloud-Native Environments: An Interview with Dino Dai Zovi
September 22, 2017
Capsule8 CEO & Co-Founder Dino Dai Zovi chats with Ed Amoroso of TAG Cyber Media about Capsule8, what we mean by “attack disruption” and challenges in cloud-native security. Watch the video.