Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Containers are supposed to be isolated — but what happens when that isolation breaks? In this video, we explain critical container escape vulnerabilities in runc, the default container runtime used by Docker and Kubernetes, and why they represent a serious container security risk. Recent disclosures known as the “Leaky Vessels” vulnerabilities show how a compromised container can escape its sandbox, access the host filesystem, and potentially take over the node.

It’s December, and Kubernetes 1.35 is almost here - with security changes that can break workloads or access paths if you upgrade unprepared. This video is a fast, practical security edition rundown for security and platform engineers: what changed, why it matters, and what to verify before you roll 1.35 into production. In this video (Kubernetes 1.35 security highlights): If you want a deeper dive, comment with what you’re running today (managed K8s vs self-managed, distro, container runtime, auth setup) and I’ll break down the safest upgrade path.

Runtime attacks don’t wait for your next scan. Falco detects suspicious behavior in real time across Kubernetes, containers, and Linux hosts—using syscall signals (eBPF/kernel module) plus a rule engine and plugins. In ~10 minutes, you’ll learn how Falco works end-to-end, where it fits in a modern cloud-native security stack, and how to operationalize it without drowning in noise. In this video: Getting started checklist (practical).

Your cloud environment is growing fast, but so are the risks. More infrastructure means more blind spots. And modern attacks move faster than traditional defenses can handle. That's why you need CNAPP, a cloud native application protection platform.

Introducing Agentic Cloud Security with Sysdig Sage. Cloud security doesn’t need more alerts — it needs better judgment. At Sysdig, we believe defenders shouldn’t have to choose between speed and certainty. They need a different kind of intelligence: AI that thinks AI that reasons AI that acts With the Sysdig Sage, the age of agentic cloud security has arrived. Sysdig Sage brings a security “brain” to your cloud—always on, always learning, always working.

Stay ahead of threats with Sysdig's agentic cloud security.

In the cloud, everything moves fast, especially your security and development teams. But oftentimes, they're moving in different directions. And when priorities don't align, teams end up settling for good enough. But when your reputation is on the line, good enough doesn't cut it. When securing every second matters, choose Sysdig. Choose cloud security the right way. Learn more on sysdig.com.