My #cloud people, my #security people, and my #cloud security people, come hang out with me and Forrester's delightful hackerxbella | Allie Mellen next week. We'll talk about handling threat detection at cloud speed, and we promise to be at least mildly entertaining!
bit.ly/3UgI6vU

🔥 Sysdig’s Anna Belak joined Screaming in the Cloud to discuss findings from our 2023 Global Cloud Threat Report. Hear her take on the challenges teams face in ensuring their cloud is secure, such as quantity of data vs. quality, automation & more. ⤵
okt.to/CqoEzW

'It’s really hard to know all the 51 ways to run containers in the cloud and then to be like, oh, 51 ways to run malicious containers in the cloud. How do I prevent all of them, when you have a day job?” — Anna Belak (Anna Belak)

Have a listen: buff.ly/45bB8KO

Exciting podcast alert! 📣
🎙 Sysdig's Anna Belak sat down with Banyan Security's #CISO @denjonescyber to discuss the #cybersecurity challenges tech-forward companies face. From zero trust strategies to reducing risk—this podcast covers it all!
🎧 Tune in:okt.to/X0UMeH

Live from #GartnerSEC , Gartner Opening Keynote: Debunking the Myths that Obscure Cybersecurity's Full Value. Gartner analysts practical steps #cybersecurity leaders must take. Unlock another expert-led session now: gtnr.it/3qfZsMb #CISO twitter.com/i/broadcasts/1…

🗣 Hot @Gartner Summit Session alert! 🔥 Join former Gartner analysts Anna Belak & Michael Isbitski this Monday to learn about the anatomy of container attacks & mitigation strategies. Visit expo booth #931 & get ready for a Big Announcement™ 📢 from the Summit on Wednesday!

My first post-analyst #GartnerSEC and I actually have time to watch the keynote ... and with Anna Belak ... that should make it even better :-) Let the fun and yet slightly cynical commentary commence!

#Cryptojacking is on the rise as threat actors exploit cloud resources for profit — resulting in significant financial losses for businesses. 💸 Learn about their tactics, costs & steps to protect your business in Anna Belak’s article for @StackPublishing: okt.to/ITCkLJ”

Cloud Security: Turns Out We Needed Another Acronym (CNAPP) bit.ly/3NtjjRJ Anna Belak #cloudsecurity #CNAPP

What are some good public breaches where we know Initial Access was a Kubernetes attack?

Or where kube played a role in the breach?

Matt Johansen Great question! SCARLETEEL is the best recent example that I know of. Actor exploited a vulnerable Kubernetes container and pivoted to the underlying cloud service account. sysdig.com/blog/cloud-bre…

Insightful takes from Anna Belak on how securing custom-built software has changed in recent years & why vulnerability prioritization is key to saving #DevOps time & energy without slowing down the delivery of the organization’s business value. Check it out:
okt.to/DpLWN0

Cryptojacking: Free Money for Attackers, Huge Cloud Bill for You bit.ly/3UXbdRS by Nick Lang and Anna Belak ( Anna Belak
) Sysdig #Cryptojacking

Episode 94 'Meet Cloud Security Acronyms with Anna Belak' of Cloud Security Podcast where hosts Dr. Anton Chuvakin and Timothy Peacock interview Anna Belak (@aabelak) from Sysdig about cloud security acronym proliferation: CSPM, CWPP, CNAPP, etc
cloud.withgoogle.com/cloudsecurity/…

Sysdig Talks: 2022 Threat Landscape (Live) twitter.com/i/broadcasts/1…

Are you willing to pay $430K for a stranger’s cryptocoins? 💸
Last chance to register for InformationWeek (10/6) & hear Anna Belak present the latest intel from Sysdig’s Threat Research Team on how attackers have evolved their strategies to reach the cloud. okt.to/BYILnU

Sysdig's Anna Belak & Wᴮoͬlͤmͭaͭrans are teaming up with AWS Partner Network for a webinar on 9/15 to discuss fundamentals & best practices for finding suspicious events with #AWS CloudTrail.

Reserve your spot in this complementary Techstrong Group #DevOps webinar: okt.to/xhCZSK

A challenge I hear in software security is the tree vs the forest problem. It's one thing to work with one dev team to improve their secure dev process & have them meet a policy before pushing to prod. It's another thing to manage the security of a fleet of apps across an org.

I'm on @CISOseries Podcast w/Mike Johnson and David Spark. Listen: cisoseries.com/when-does-an-e… @CISOseries

A #CloudSecurity system that uses #MachineLearning (ML) to detect #malware sounds great—in theory, but as Anna Belak states in her latest article on @darkreading: ML is not magic pixie dust! ML should 𝙚𝙭𝙩𝙚𝙣𝙙 existing security methods, not replace them. okt.to/S8b5y9