Posts in 2023
The 2023 Falco Security Audit
Wednesday, March 22, 2023 By Luca Guerra
We are happy to announce that in early 2023 the Falco project completed a security audit sponsored by the CNCF, with support from the Open Source Technology Improvement Fund and conducted by the security experts at Quarkslab SAS. The audit was …
Forward Falco events to AWS Security Lake
Tuesday, March 14, 2023 By Thomas Labarussias
Last November at re:Invent (2022) AWS introduced the new security oriented data lake: Amazon Security Lake. The AWS team leading the development of the new service contacted the Falco community and proposed a collaboration to develop the first custom …
Falcoctl: install and manage your rules and plugins
Friday, February 24, 2023 By Thomas Labarussias
Since the launch of the plugin framework in January 2022, our adopters have requested an out-of-the-box solution to manage the lifecycle of rules (installation, updates). We heard your request and also created a guide to help you smoothly install the …
Falco 0.34.1
Monday, February 20, 2023 By Aldo Lacuku
Today we announce the release of Falco 0.34.1 🦅! Novelties 🆕 and Fixes Here's a minor update! This patch release addresses small but persistent issues that have been causing inconvenience for users: http_output not working as expected when the remote …
Rule basics for the Falco 3.0.0 Helm chart
Thursday, February 09, 2023 By Luca Guerra
The new Falco Helm chart 3.0.0 (full documentation, upgrade information) comes with a new way to automatically update the Falco rules that are currently loaded. Of course, you can enable, disable and configure this functionality to your liking. …
Falco 0.34.0 a.k.a. "The Honeybee 🍯"
Tuesday, February 07, 2023 By Luca Guerra, Andrea Terzolo, Teryl Taylor, Jacque Salinas
Dear community, today we are delighted to announce the release of Falco 0.34.0 🎉! A big thank you to the community for helping get the latest release out. The Falco community is thrilled about this release and cannot wait to share the latest goodies. …
The GPG key used to sign Falco packages has been rotated
Wednesday, January 18, 2023 By Jason Dellaluce
The Falcosecurity organization uses a GPG key for providing detatched signatures for the official Falco packages available at download.falco.org/?prefix=packages. After the security incident of CircleCI disclosed in January 2023, the Falco …
Falcosidekick 2.27.0 and Falcosidekick-UI 2.1.0
Tuesday, January 10, 2023 By Thomas Labarussias
So many good things happened for Falcosidekick and Falcosidekick UI this year. It's still incredible these projects became so beloved and useful for the community. To all contributors, promotors and users, a big big thank you. The new year is there, …
Falco: Project Recap 2022
Wednesday, January 04, 2023 By Jacqueline Salinas
Dear Falco community, As always, we are truly grateful for the amazing community of maintainers and contributors. The Falco project and community would not be the vibrant ecosystem it is today without these incredible individuals. Let’s take a look …
Posts in 2022
Cryptomining Detection Using Falco
Monday, December 05, 2022 By Nigel Douglas
Cryptominers are programs that utilize computer resources to mine cryptocurrency. XMRig is an example of an open source cryptomining software designed for the sole purpose of mining cryptocurrencies, like Monero or Bitcoin. Cryptominers usually get …