A Rigid Security Model Mandatory Access Control (MAC) is a security model where access to resources is determined by a central authority based on security labels assigned to both subjects (users, processes) and objects (files, resources). Unlike discretionary access control (DAC), where the owner of a resource can control who accesses it, and role-based access Read More …
Lyrics :: Little Piggies
Verse 1 That little piggie stole all the cookies while dark little piggie got none Third little piggie worked hard each day coming home with the setting sun that little piggie never work a day while third little piggie dreamed hard that little piggie said the world gone bad cause what dark little piggie might Read More …
Tales from the Cloud Trenches
Source In a recent threat hunt, Datadog Security Labs uncovered sophisticated attacker activity stemming from a leaked, long-term AWS access key (AKIA*). Within a mere 150-minute window, five distinct IP addresses were observed attempting to leverage this compromised key, executing various malicious techniques, tactics, and procedures (TTPs). This incident brought to light several previously unreported Read More …
Nighttime Egg Harvest
Nighttime Egg Harvest #chicken #chicago #urbanhomesteading #egglayers #rentalproperty #rent #eggs #urbanhomesteading #chickencoop #chickentunnel #chickens #backyardanimals #backyardchickens #backyardfarming #backyard #backyardbirds #backyardwildlife #backyardchickens #backyardchickenfarming #backyardchores #rentisdue #rental
CAA – Certification Authority Authorization
A CAA record is a type of DNS (Domain Name System) record that helps improve the security of a domain by specifying which certificate authorities (CAs) are allowed to issue SSL/TLS certificates for that domain. To understand this better, let’s break it down: What is DNS? DNS is like the phonebook of the internet. It Read More …
The Key Benefits of Containers and Kubernetes for Organizations
Unlocking Efficiency Containers and Kubernetes offer numerous advantages for organizations, significantly enhancing application development and deployment processes. One of the primary benefits is agile application development, as containers simplify packaging and facilitate rapid deployment. This allows for frequent application builds, quick software releases, and granular rollbacks, ultimately improving top-line growth and customer experience. Another key Read More …
Backyard Chickens – May 2025
Some Quick Disco Chickens
Kubernetes Ingress Controller’s fake certificate
A Kubernetes Ingress Controller’s fake certificate is a security issue because it’s a self-signed certificate, which is not trusted by web browsers or other clients. This means that users will encounter certificate warnings or errors when trying to access your application, and the Ingress Controller is not providing secure communication. Here’s why it’s a problem: Not Trusted: Read More …
ENIAD – Endpoint, Network, Identity, Application, Data
Overview of ENIAD The ENIAD framework provides a comprehensive approach to cybersecurity by focusing on five critical areas that organizations must protect to ensure a robust security posture. Each component addresses specific aspects of security, enabling organizations to detect, respond to, and mitigate threats effectively. 1. Endpoint Endpoints refer to devices that connect to the Read More …
YES3 Scanner: Bolstering Amazon S3 Security
Fog Security has released YES3 Scanner, an open-source tool designed to address critical Amazon S3 security misconfigurations and enhance ransomware prevention. This tool emerges amidst a heightened focus on supply-chain attacks, cloud ransomware, and cryptocurrency attacks exploiting compromised S3 static website hosting, aiming to overcome limitations found in existing security solutions. YES3 Scanner meticulously evaluates Read More …