Posts in 2022
Cryptomining Detection Using Falco
Monday, December 05, 2022 By Nigel Douglas
Cryptominers are programs that utilize computer resources to mine cryptocurrency. XMRig is an example of an open source cryptomining software designed for the sole purpose of mining cryptocurrencies, like Monero or Bitcoin. Cryptominers usually get …
Getting started with modern BPF probe in Falco
Wednesday, November 30, 2022 By Andrea Terzolo, Vicente J. Jiménez Miras
The new BPF probe has landed among us 👽 and it brings to the table new shiny features. The BPF world grows continuously and every new kernel release introduces some unbelievable novelties! To take advantage of these we have created a completely new …
Falco on AWS Cloud
Wednesday, November 30, 2022 By The Falco Authors
It's Amazon Web Services' largest user conference this week, re:Invent, which is a good time to highlight the ways you can use Falco in the AWS Cloud for runtime security. In this article we'll review what's new, and take a look at installation, …
Falco 0.33.1
Thursday, November 24, 2022 By Luca Guerra
Today we announce the release of Falco 0.33.1 🦅! Novelties 🆕 and Fixes 🐛 Here's a tiny patch release! It only fixes two bugs reported by the community: CrashLoopBackOff in some cases when the gVisor integration is enabled on Kubernetes (reported on …
Restructuring the Kubernetes Threat Matrix and Evaluating Attack Detection by Falco
Wednesday, November 23, 2022 By Hiroki Akamatsu
I’m Hiroki Akamatsu (@hi120ki), an intern on Mercari’s Security Engineering Team. During my internship, I worked on the re-evaluation of Falco, runtime security monitoring tools for Kubernetes. This article presents the following findings from the …
Falco applies for graduation
Wednesday, November 09, 2022 By Jacque Salinas, Leonardo Grasso, and Vicente Jiménez Miras
Dear Falco community, The Falco project is excited to announce that on Nov 4, 2022, the project maintainers submitted the PR to be considered for graduation. This milestone is important because it demonstrates the health and maturity of the project …
Falco at the KubeCon NA 2022
Tuesday, November 08, 2022 By Vicente J. Jimenez Miras
It was KubeCon recently. I doubt anyone reading this didn't know about it. And if you attended, you're probably still receiving e-mails about the event. KubeCon is where everyone wants to be. And Falco was there too. It did indeed have a great …
Monitoring your EKS clusters audit logs
Friday, November 04, 2022 By Thomas Labarussias
At the beginning of this year, Falco introduced a game changing feature, the Falco Plugins. They allow Falco to monitor and trigger alerts for any kind of event. Since the launch of the new plugin framework the Falco community has collaborated to …
Using Falco to Protect GitHub
Tuesday, October 25, 2022 By Loris Degioanni
If you are reading this, your source code is likely your most important asset: not only it is at the base of the applications that power your business, but if you operate in the cloud, it’s also likely how you define and control your infrastructure. …
Falco 0.33.0 a.k.a. "the pumpkin release 🎃"
Wednesday, October 19, 2022 By Jason Dellaluce, Jacque Salinas
Dear community, today we are happy to announce the release of Falco 0.33.0 🎉! A big thank you to the community for helping get the latest release over the finish line. The Falco community rallied behind this release and we wanted to share some of the …