Logo for Kubernetes open-source container orchestration system Researchers at Trend Micro say about 50,000 IPs were compromised across multiple Kubernetes clusters in a wormlike attack by the cloud-focused cryptojacking group TeamTNT.
Kubernetes, developed and backed by Google, is one of the most widely adopted container orchestration platforms for automating the deployment, scaling and management of containerized applications. The high number of targets shows that TeamTNT is still expanding its reach, especially in cloud environments, and perhaps infrastructure, since the group can monetize a more significant amount from their campaigns with more potential victims, Magno Logan, information security specialist and senior threat researcher at Trend Micro, writes in a blog post.
Reliable Deployments at GitHub
by
The GitHub engineering team recently blogged about how they ensure fast and reliable deployments. Raffaele Di Fazio, software engineer at GitHub, provided a deep dive into the deployment mechanics at GitHub.
GitHub is deployed on multiple Kubernetes Clusters and also on physical servers. As the deployment process impacts the GitHub customers and the internal users, safeguarding deployment reliability was critical for the team. The GitHub engineering team started fetching data from the deployment tools in order to fully understand the problem space:
CI/CD builds duration
The total duration of the deployment pipeline
The final state of a deployment pipeline