Sysdig

📣 𝗖𝗮𝘀𝘁 𝘆𝗼𝘂𝗿 𝘃𝗼𝘁𝗲 𝗳𝗼𝗿 𝗦𝘆𝘀𝗱𝗶𝗴! 🗳️ We’re excited to share that Sysdig Sage™ has been named a finalist in the 2025 DevOps Dozen awards for 𝘉𝘦𝘴𝘵 𝘈𝘱𝘱𝘭𝘪𝘤𝘢𝘵𝘪𝘰𝘯 𝘰𝘧 𝘈𝘨𝘦𝘯𝘵𝘪𝘤 𝘈𝘐 𝘪𝘯 𝘢 𝘋𝘦𝘷𝘖𝘱𝘴 𝘛𝘰𝘰𝘭/𝘗𝘭𝘢𝘵𝘧𝘰𝘳𝘮! 👉 Sysdig Sage is proving what’s possible when agentic AI meets live runtime telemetry — autonomously pinpointing real business risk and driving fast, targeted remediation. Teams are already reporting ~76% faster response and 80+ hours/week reclaimed from manual triage. It's clear the industry is recognizing what our customers already know: agentic AI is the future of secure DevOps, and Sysdig is leading the charge! 🚀 𝗩𝗼𝘁𝗲 𝘁𝗼𝗱𝗮𝘆 through December 31 — help Sysdig Sage take the win! 🥇 Vote now ➔ https://okt.to/h1vCNw

Thanksgiving is over. The postmortem is in. 👀 How stable was your holiday environment? 👇

🦃 Sysdig's feeling grateful — so we’re gifting a 𝗽𝗹𝗮𝘁𝗲-𝗳𝘂𝗹𝗹 (𝗼𝗳 𝗟𝘂𝗺𝗶𝗻 🐙) to one lucky winner this Thanksgiving: 𝗮 𝟮𝟬𝗶𝗻 𝘀𝗹𝗮𝘁𝗲 𝗰𝗵𝗮𝗿𝗰𝘂𝘁𝗲𝗿𝗶𝗲 𝘁𝗿𝗮𝘆 that's truly one-of-a-kind! 🎁 This custom-engraved cheese board featuring Sysdig's legendary mascot, Lumin, turned out so good we almost didn't want to give it away... 𝘢𝘭𝘮𝘰𝘴𝘵. 𝗛𝗲𝗿𝗲'𝘀 𝗵𝗼𝘄 𝘁𝗼 𝗲𝗻𝘁𝗲𝗿 𝘁𝗵𝗲 𝗱𝗿𝗮𝘄𝗶𝗻𝗴: 👍 𝘓𝘪𝘬𝘦 this post = 1 entry 🔁 𝘙𝘦𝘴𝘩𝘢𝘳𝘦 this post = 2 entries 🥐 𝘊𝘰𝘮𝘮𝘦𝘯𝘵 your favorite Thanksgiving side dish = 3 entries A winner will be chosen at random after the holiday weekend. Until then, start the side dish discourse below — and may the odds be ever in your flavor. 🍽️

Used by 60% of the Fortune 500, Falco is the most widely adopted runtime security tool for cloud-native ecosystems, and its strength comes from the community behind it. 👥 🎥 At KubeCon NA, we caught up with Leonardo Grasso, a core Falco maintainer, to discuss how Falco��s community-driven, rule-based engine delivers real-time threat detection for cloud environments, and how AI will influence the next era of open source. 🦅 If you missed the Falco kiosk at KubeCon, this is your chance to catch up! Watch the full convo below and join the 𝗦𝘆𝘀𝗱𝗶𝗴 𝗢𝗽𝗲𝗻 𝗦𝗼𝘂𝗿𝗰𝗲 𝗖𝗼𝗺𝗺𝘂𝗻𝗶𝘁𝘆 to get exclusive insights into all things Falco. 👉 https://okt.to/WsLuob

𝗙𝗔𝗖𝗧 👉 AI-generated code is a speed boost, not a safety net. Vibe coding can take you from idea to production fast — but without the right guardrails, it can just as quickly ship vulnerabilities. ⚠️ 💡 In The New Stack, our Sr. Cybersecurity Strategist Crystal Morin shares a practical playbook for reducing risk in AI-generated code with STRIDE threat modeling and the OWASP Top 10 for LLM apps. Think “use the autopilot, trust the human”: move fast, but keep a threat-minded hand on the wheel. Give it a read and tell us: what’s your team doing to keep AI speed from turning into AI risk? 💭 🔗: https://okt.to/9HD3PN

🚨 A new Shai-Hulud worm variant is spreading fast, compromising 𝗼𝘃𝗲𝗿 𝟮𝟱,𝟬𝟬𝟬 𝗚𝗶𝘁𝗛𝘂𝗯 𝗿𝗲𝗽𝗼𝘀 and actively weaponizing hundreds of NPM packages. This revamped strain elevates the threat: propagating through trusted packages, hijacking the preinstall step, spawning fake repos, and abusing GitHub workflows and Discussions to execute malicious code and covertly extract sensitive data. The Sysdig Threat Research Team published a technical analysis exposing how Shai-Hulud v2 operates, why it's more destructive than the original campaign, and how to detect + mitigate both variants with runtime threat detection and the Sysdig Threat Intelligence feed. Dig in ➡️ https://okt.to/JqDiBM

The key to securing a complex cloud architecture? Start with a blueprint. 📐 💡 Sysdig's new 𝗩𝘂𝗹𝗻𝗲𝗿𝗮𝗯𝗶𝗹𝗶𝘁𝘆 𝗠𝗮𝗻𝗮𝗴𝗲𝗺𝗲𝗻𝘁 𝗕𝗹𝘂𝗲𝗽𝗿𝗶𝗻𝘁 shows you how to align visibility, prioritization, and remediation with the way your cloud is actually built — so you can manage vulnerabilities 𝘵𝘩𝘦 𝘳𝘪𝘨𝘩𝘵 𝘸𝘢𝘺: with context that cuts through the noise. Swipe through the framework below, then take the self-assessment inside the blueprint to see how your VM program measures up. ➡️ https://okt.to/82EMkJ

🚨 CISA recently confirmed active exploitation of 𝗖𝗩𝗘-𝟮𝟬𝟮𝟰-𝟭𝟬𝟴𝟲 — a long-standing Linux privilege-escalation flaw tied to ransomware campaigns. 🐧 Even with a patch available, this vulnerability lingers across older Linux kernel versions and overlooked hosts — giving attackers a quick path to root access. Our Threat Research Team details how attackers are still leveraging this weakness and how runtime behavioral analytics can surface exploitation attempts in real time. ⚠️ Key insight for organizations running Linux at scale: 👉 https://okt.to/UYBs4D

An 𝗔𝗜𝗕𝗢𝗠 (AI Bill of Materials) is quickly becoming essential for any team looking to truly understand and secure their AI stack. Just as a software bill of materials (SBOM) provides visibility into the components and vulnerabilities of your software stack, an AIBOM maps the GPUs, containers, datasets, and APIs that power your models — and exposes hidden risks. Sysdig’s new paper breaks down how familiar security controls extend naturally to AI workloads, proving that securing AI isn’t an entirely new frontier. If you’ve already secured containers, cloud workloads, and pipelines, you’re closer than you think. Learn more: https://okt.to/wzVWQA

Kubernetes security has crossed a tipping point: the scale is too big, the threats are too fast, and the noise is overwhelming. 🫠 Luckily, a new wave of AI technology is stepping in as the force multiplier teams need to keep pace with modern Kubernetes risk. Our latest blog explores how agentic AI transforms cloud security from “𝘵𝘦𝘭𝘭 𝘮𝘦 𝘸𝘩𝘢𝘵’𝘴 𝘸𝘳𝘰𝘯𝘨” to “𝘩𝘦𝘭𝘱 𝘮𝘦 𝘨𝘦𝘵 𝘪𝘵 𝘥𝘰𝘯𝘦,” accelerating everything from triage to remediation. ⚡ 🦾 If you’re ready to see what an agentic AI cloud security agent like 𝗦𝘆𝘀𝗱𝗶𝗴 𝗦𝗮𝗴𝗲™ can take off your team’s plate, this is the blog for you: https://okt.to/WSVd2n