#Snyk

RunC Flaws Enable Container Escapes, Granting Attackers Host Access

by

January 31, 2024 at 03:40PM Multiple security vulnerabilities in the runC command line tool have been disclosed, known as Leaky Vessels. These vulnerabilities could allow threat actors to escape container boundaries and launch further attacks, potentially accessing sensitive data and superuser privileges. The flaws have been addressed in runC version 1.1.12, and users are advised … Read more

Snyk Acquires Helios for Runtime Visibility

by

January 17, 2024 at 07:36AM Snyk, a developer-focused security company, has acquired Helios, a startup specializing in runtime application troubleshooting. This acquisition will enhance Snyk’s “cloud-to-code risk visibility” by combining Helios’ runtime data collection with the Snyk Developer Security Platform. The integration will provide Snyk customers with improved asset discovery, issue identification, and risk prioritization. … Read more