Profile avatar
mccune.org.uk
Security geek, Containers, Kubernetes, Golang/Ruby, hillwalking Home Page :- https://www.mccune.org.uk Blog:- https://raesene.github.io
171 posts 5,243 followers 444 following
Prolific Poster
Conversation Starter
Posts 35 Comments 15

You know what that view means…. It’s securi-Tay time!

submitted 2 days ago • 0 comments

Si vous êtes sur Paris et avez de l'expérience avec la sécurité de la chaîne d'approvisionement logicielle (supply chain security), Datadog a un poste dans mon équipe qui devrait vous intéresser ! careers.datadoghq.com/detail/66012... N'hésitez pas à me DM si vous avez des questions.

submitted 4 days ago • 0 comments

📢 Christophe Tafani-Dereeper will present "Code to Cloud: Exploiting Modern Web Applications to Breach Cloud Environments" at Insomni’hack 2025! 📖 Check the full lineup and get your ticket: insomnihack.ch/talks/code-t... #INSO25 #Cybersecurity #EthicalHacking #Switzerland

submitted 18 days ago • 0 comments

I found a crazy bug in Avowed guys

submitted 14 days ago • 19 comments

whoAMI attacks give hackers code execution on Amazon EC2 instances

submitted 15 days ago • 0 comments

Tickets have been selling well for Scotland's first non-university led infosec conference since 2019. Fancy grabbing yours? Head over to: www.eventbrite.co.uk/e/hack-glasg...

submitted 16 days ago • 0 comments

We discovered a pattern in the way many projects retrieve Amazon Machine Images (AMIs), allowing attackers to publish AMIs with specially crafted names and gain code execution within vulnerable accounts. securitylabs.datadoghq.com/articles/who... by @sethsec.bsky.social

submitted 17 days ago • 1 comment

UK Authorities Demand Back Door Access to iCloud Backups Globally

submitted 22 days ago • 8 comments

Been lots of AI at #soocon25 if you’re interested in something a bit different, come along to my session at 2:20pm and hear about why containers rule everything around me stateofopencon2025.sched.com/event/1tDI3/...

submitted 24 days ago • 0 comments

Almost time to get started on #soocon25 day 2. My talk's today and I'll be getting into why containerization has been so successful, What didn't matter (security?!) and what it means for other open source projects.

submitted 24 days ago • 0 comments

Today is my last day at Docker. I really appreciated the opportunity to work with the people there, and I certainly learned a lot. I'll be looking for a role that sponsors non-US visas next. If you have any leads that I could be a good fit for, holler at your goose! DMs are open 💕

submitted 30 days ago • 37 comments

The next blog in our #Kubernetes #Security fundamentals series is out now. This time we're taking a look at the world of network security! securitylabs.datadoghq.com/articles/kub...

submitted 31 days ago • 0 comments

2^9 = 512 Subscribers. Can we make it to 2^10 for next weeks news? Also, Hello from our new @bsky.app account! 👋 #bsidesbelfast25 www.youtube.com/@bsidesbelfast #bsidesbelfast #securitybsides

submitted 33 days ago • 0 comments

Ever wanted to hear a security person tell you not to spend time on security...? Come along to my talk at #stateofopencon next week and I promise it'll all made sense!

submitted 33 days ago • 0 comments

Slides and demo videos for the talk that @antitree.com and I gave at the last @shmoocon.bsky.social on entitled, " "A Commencement into Real #Kubernetes Security!" Demos include use of Mark's brand new tool, as well as of Peirates. www.canva.com/design/DAGZr... 1/9

submitted 36 days ago • 3 comments

State of Open Con 25 speaker @mccune.org.uk of Datadog will be in our SOOCon25 Open Source Software and Security track! 🎤 Join to hear about Containers Rule Everything Around Me. 💡🌐 📆 https://buff.ly/3HjeQxq #opensource #opensourcesoftware #stateofopencon #soocon25 #opensourcelondon #openuk

submitted 42 days ago • 0 comments

First blog post of the new year and this is one I've been meaning to write up for a while which is some details on #Kubernetes API Server proxy feature and how it might be possible to use some known weaknesses in it to escalate your privileges in a cluster. raesene.github.io/blog/2025/01...

submitted 42 days ago • 0 comments

The Kubernetes Security Response Committee has published an advisory for CVE-2024-9042, affecting Windows worker nodes querying the /logs endpoint. Iain Smart, Principal Security Consultant at AmberWolf, reproduced the issue & shared detection insights in our latest blog.

submitted 43 days ago • 1 comment

Just a Heads-up for any #Kubecon EU speakers and specifically the Tutorial track. Looks like the timings of the talks have been tweaked a bit so if you thought you had 90 mins for your tutorial you actually have 75 :)

submitted 44 days ago • 0 comments

The next in my #Kubernetes #Security fundamentals video series is up now. This time I'm looking at how service account authentication works in Kubernetes, with some hopefully interesting details on how bound service account tokens work. youtu.be/jTswj4CS4IA?...

submitted 46 days ago • 0 comments

good morning and welcome to 2025

submitted 54 days ago • 7 comments

Happy anniversary to the time I was Ian Coldwater, ultimately resulting in half of Tech Twitter being me being Ian and one mixup on Wikipedia

submitted 56 days ago • 10 comments

If you're one of the umpteen millions of people who installed Honey, you may want to consider uninstalling it... www.youtube.com/watch?v=EAx_...

submitted 58 days ago • 6 comments

@marionmccune.bsky.social got me what I think is the geekiest T-Shirt I own :)

submitted 70 days ago • 0 comments

"Escalating privileges to read secrets with Azure Key Vault access policies" by @siigil.bsky.social securitylabs.datadoghq.com/articles/esc...

submitted 74 days ago • 0 comments

New research: We've been monitoring a threat actor publishing dozens of trojanized GitHub repositories targeting threat actors, leaking hundreds of thousands of credentials along the way securitylabs.datadoghq.com/articles/mut...

submitted 75 days ago • 0 comments

Slides for the @bsideslondon.bsky.social container security workshop presented with @smarticu5.bsky.social and @marionmccune.bsky.social are here blog.iainsmart.co.uk/talks/BSides...

submitted 76 days ago • 1 comment

Traveling down to @bsideslondon.bsky.social today. I'll be giving a workshop on container and Kubernetes security with @smarticu5.bsky.social and @marionmccune.bsky.social tomorrow afternoon! Looking forward to catching up with folk down there.

submitted 78 days ago • 1 comment

If you receive email from owaspfoundation.org it's not spam. A faulty Microsoft AI is blocking @owasp.org . read: owasp.org/blog/2024/10... Perhaps they have gone tired of following best security practices? #appsec #microsoft #ai #owasp

submitted 80 days ago • 2 comments

🚀 Hey Speakers! 🚀 Exciting news! Submit your paper for the 2025 #OWASP Global #AppSec EU Call for Presentations. Share expertise with the #cybersecurity community and showcase your skills. Don't miss out on this opportunity to shine! Act now! sessionize.com/owasp... #devsecops #infosec #AI

submitted 86 days ago • 0 comments

We are happy to introduce our latest tool "Supply Chain Firewall" 🎉 by @ikretz.bsky.social The tool detects & prevents installation of malicious packages in local development environment. Read more securitylabs.datadoghq.com/articles/int... And give it a try github.com/DataDog/supp...

submitted 85 days ago • 0 comments

Stratus Red Team v2.20.0 is now available, with great contributions from @flekyy90.bsky.social allowing you to reproduce AWS TTPs seen in the wild! ➔ Use GetFederationToken to generate temporary credentials ➔ Use SendSerialConsoleSSHPublicKey to pivot to EC2 instances github.com/DataDog/stra...

submitted 87 days ago • 1 comment

Just came across github.com/kubernetes-s... which is a really useful standalone implementation of Kubernetes network policies, very handy if you're using Kind for demos or are using a CNI that doesn't do net pol.

submitted 86 days ago • 1 comment

Exclusive: The backdoor inserted in v1.95.7 adds an "addToQueue" function which exfiltrates the private key through seemingly-legitimate CloudFlare headers. Calls to this function are then inserted in various places that (legitimately) access the private key.

submitted 87 days ago • 3 comments

We're now officially on Bluesky! Expect: ➔ New articles on Security Labs about cloud, container and application security ➔ OSS projects for cloud security practioners ➔ Conference talks at community conferences See also our starter pack bsky.app/starter-pack... with our authors and researchers!

submitted 88 days ago • 2 comments