Posts in 2023
The GPG key used to sign Falco packages has been rotated
Wednesday, January 18, 2023 By Jason Dellaluce
The Falcosecurity organization uses a GPG key for providing detatched signatures for the official Falco packages available at download.falco.org/?prefix=packages. After the security incident of CircleCI disclosed in January 2023, the Falco …
Falcosidekick 2.27.0 and Falcosidekick-UI 2.1.0
Tuesday, January 10, 2023 By Thomas Labarussias
So many good things happened for Falcosidekick and Falcosidekick UI this year. It's still incredible these projects became so beloved and useful for the community. To all contributors, promotors and users, a big big thank you. The new year is there, …
Falco: Project Recap 2022
Wednesday, January 04, 2023 By Jacqueline Salinas
Dear Falco community, As always, we are truly grateful for the amazing community of maintainers and contributors. The Falco project and community would not be the vibrant ecosystem it is today without these incredible individuals. Let’s take a look …
Posts in 2022
Cryptomining Detection Using Falco
Monday, December 05, 2022 By Nigel Douglas
Cryptominers are programs that utilize computer resources to mine cryptocurrency. XMRig is an example of an open source cryptomining software designed for the sole purpose of mining cryptocurrencies, like Monero or Bitcoin. Cryptominers usually get …
Getting started with modern BPF probe in Falco
Wednesday, November 30, 2022 By Andrea Terzolo, Vicente J. Jiménez Miras
The new BPF probe has landed among us 👽 and it brings to the table new shiny features. The BPF world grows continuously and every new kernel release introduces some unbelievable novelties! To take advantage of these we have created a completely new …
Falco on AWS Cloud
Wednesday, November 30, 2022 By The Falco Authors
It's Amazon Web Services' largest user conference this week, re:Invent, which is a good time to highlight the ways you can use Falco in the AWS Cloud for runtime security. In this article we'll review what's new, and take a look at installation, …
Falco 0.33.1
Thursday, November 24, 2022 By Luca Guerra
Today we announce the release of Falco 0.33.1 🦅! Novelties 🆕 and Fixes 🐛 Here's a tiny patch release! It only fixes two bugs reported by the community: CrashLoopBackOff in some cases when the gVisor integration is enabled on Kubernetes (reported on …
Restructuring the Kubernetes Threat Matrix and Evaluating Attack Detection by Falco
Wednesday, November 23, 2022 By Hiroki Akamatsu
I’m Hiroki Akamatsu (@hi120ki), an intern on Mercari’s Security Engineering Team. During my internship, I worked on the re-evaluation of Falco, runtime security monitoring tools for Kubernetes. This article presents the following findings from the …
Falco applies for graduation
Wednesday, November 09, 2022 By Jacque Salinas, Leonardo Grasso, and Vicente Jiménez Miras
Dear Falco community, The Falco project is excited to announce that on Nov 4, 2022, the project maintainers submitted the PR to be considered for graduation. This milestone is important because it demonstrates the health and maturity of the project …
Falco at the KubeCon NA 2022
Tuesday, November 08, 2022 By Vicente J. Jimenez Miras
It was KubeCon recently. I doubt anyone reading this didn't know about it. And if you attended, you're probably still receiving e-mails about the event. KubeCon is where everyone wants to be. And Falco was there too. It did indeed have a great …