Cmd blog posts

The Cmd Blog

A blog about security and protections
in Linux, DevOps, and the Cloud

Subscribe

Asymmetric relationships contribute to Cybersecurity failures

By: Thaddeus Walsh

This blog series is written for security professionals whose security posture is moderate to high. Even those companies who have the basics in security covered can run into security challenges between digital transformation, cloud, or Linux environments. In this blog series, we’ll address a few we see from our customers and prospects. The first installment…

Continue Reading 

Cloud Security from Cmd is live on the Amazon Web Services Marketplace

By: Jennifer Ellard

It’s important to have your cloud-based security platform available to cloud architects and professionals. Cmd recently made part of it’s solution available to Amazon Web Services (AWS) customers. From the AWS marketplace, cloud gurus can select a trial of Cmd or one of our for-purchase Cmd products.    Cloud Security, especially detection, is difficult for…

Continue Reading 

Cmd Advisory: (Baron Samedit) Sudo Exploit CVE-2021-3156

By: Shashank Kittane Suryanarayana and Jake King

Sudo bug delivers an easy to exploit privilege escalation vulnerability for any system user. In July of 2011, a privilege escalation vulnerability was added to the Linux sudo program (Versions Ubuntu 20.04 (Sudo 1.8.31), Debian 10 (Sudo 1.8.27), and Fedora 33 (Sudo 1.9.2) and lay dormant until researchers at Qualys identified it and published their…

Continue Reading 

Latest Tweets

cmd_security avatar; Cmd (acquired by Elastic) @cmd_security ·
7 Oct 1446148979738046466

We are now an @Elastic company. Follow @Elastic for updates and announcements. #security #cloudsecurity #BetterTogether

cmd_security avatar; Cmd (acquired by Elastic) @cmd_security ·
4 Oct 1445042525660762124

ElasticON Global is a global conference for solvers. If you’re looking for innovative ways to produce real-life solutions to your organization’s search, observability, and security challenges, you’ll fit right in. The search begins October 5. https://bit.ly/3EVZnAf

elastic avatar; Elastic @elastic ·
27 Sep 1442505151873421321

“ElasticON Global is designed for YOU. The people solving the world’s most complex problems with the Power of Search.” — @ash_kulkarni, Elastic CPO.

Register now and join Ash at the #ElasticON Global opening keynote on Oct 5 → https://go.es.io/2XFpA4S

You May Also Like

Best Practices to protect your cloud workloads

As security practitioners, we are often given problems that have obscure solution sets available. Problems such as “make sure we are not in the headlines!”, “we need cloud security,” or the laughable idea of being unhackable gets thrown around. One thing we’ve seen plenty of is security ops scratching their heads to create a usable…

Continue Reading 

Foundational Elements of Cloud Incidence and Response in 2021 

Infrastructure Detection and Response (IDR) remains one of the more interesting topics I am asked to cover at Cmd, often in the context of modern cloud workloads and environments. Recently, I had the privilege of speaking at the ISACA North America conference, and covered a few of these topics in a little detail, you can…

Continue Reading 

 

5 Common Cloud Incident Response Mistakes, Part 1

At Cmd, we spend a lot of time in cloud environments, specifically Linux environments. When you are migrating applications to the cloud or transforming your digital footprint, it’s best to learn from those who have made mistakes and set yourself up for success with a solid plan. We’ve taken a deeper dive into some of…

Continue Reading 

The Curious Incident of the -EINVAL in the libbpf

“Is there any point to which you would wish to draw my attention?” “To the curious incident of the libbpf in the night-time.” “The libbpf returned -EINVAL in the night-time.” “That was the curious incident,” remarked Sherlock Holmes. At Cmd, the type of work we do often involves diagnosing a number of rather strange bugs…

Continue Reading 

 

Activate Today

Gain best-in-class Linux observability in minutes... for free_

Cmd provides the fastest, easiest way to know what’s happening in your Linux environment, who’s logging in, what they are doing, processes they initiate and sensitive assets they access.

Activate Your Free Account arrow_forward

Copy link
CopyCopied
Powered by Social Snap