How to achieve SOC 2 compliance when everyone is working from home

Mar 27, 2020 5:30:00 PM / by Alexandra Mitroshkina posted in KernelCare Blog, soc2, compliance

0 Comments

The coronavirus pandemic is affecting companies of all sizes all over the world and significantly impact on how many service companies deliver their services. The recommendation for social distancing is driving many employers to direct their employees to work from home, which may represent a material deviation from how they perform their daily tasks. But compliance activities don’t have to be put on hold during these challenging times. Below you can read about some of the tools we use to achieve and retain compliance while being a completely remote company.

Read More

‘CacheOut’ Attack: update microcode without a reboot and you're safe

Feb 11, 2020 5:31:11 PM / by Alexandra Mitroshkina posted in KernelCare Blog, Cache Out Vulnerability

0 Comments

At the end of January 2020, another speculative execution vulnerability was found in Intel processors. Any modern Intel CPU built before October 2018 is likely vulnerable to a discovered hardware issue that could allow attackers to leak sensitive data from the OS kernel, co-resident virtual machines, and even from Intel's secured SGX enclave.

Read More

Three Big-Name Data Breaches

Feb 6, 2020 5:19:06 PM / by Alexandra Mitroshkina posted in KernelCare Blog, Data Breach

0 Comments

Data breaches happen all the time for all sorts of reasons. The ones that make the news have three things in common:

  1. The data affects you and me, the public, everyday people.
  2. The data affects many of us, millions, even billions.
  3. The companies looking after the data are household names.

In this article we’re going to look at three famous companies each of which lost a lot of people’s data.

Read More

Reboot Server Now or Later? (Neither, thanks)

Dec 19, 2019 5:36:54 PM / by Alexandra Mitroshkina posted in KernelCare, KernelCare Blog, AWS_KernelCare, Live Patching, News

0 Comments

Were you at AWS re:Invent 2019?

I was, and it was a revelation.

“Will you reboot your Linux server in the next 30 days?”

That’s what I asked almost everyone who came to the KernelCare stand.

A third of you said yes. The main reason? Compliance.

Read More

QEMU-KVM vhost/vhost_net Guest to Host Kernel Escape Vulnerability

Sep 17, 2019 10:57:42 PM / by Mikhail Pobirsky posted in KernelCare, KernelCare Blog, Vulnerability fix, CVE

0 Comments

The KernelCare team are following developments for a recently-reported vulnerability involving QEMU-KVM guests running Linux kernels.

Read More

KernelCare is heading to Arm TechCon 2019

Aug 19, 2019 4:07:00 PM / by KernelCare Team posted in KernelCare, KernelCare Blog, #ArmTechCon

0 Comments

As you may know, KernelCare have been live patching Linux kernels on Arm architectures for a while now. But we’re not done spreading the word about live patching Arm-based equipment. To further share our expertise in rebootless Linux kernel updates, we are attending the Arm TechCon 2019, in San Jose, on October 8 - 10, 2019, at the San Jose Convention Center. 

Read More

SWAPGS: KernelCare patches are on the way

Aug 7, 2019 5:30:37 PM / by KernelCare Team posted in KernelCare Blog, SWAPGS, Vulnerability fix, CVE

0 Comments

KernelCare patches will start rolling out on Monday, 12 August.

Read More

SWAPGS: KernelCare patches on the way

Aug 7, 2019 3:22:40 PM / by KernelCare Team posted in KernelCare Blog, SWAPGS, Vulnerability fix, CVE

0 Comments

A new month has started—Summer is in full swing—Must be time for another CPU vulnerability. (Let’s hope this one has a catchy name.)

Read More

SACK Panic & Slowness: KernelCare patches are on the way

Jun 20, 2019 11:12:24 AM / by Alexandra Mitroshkina posted in KernelCare Blog

2 Comments

Netflix has a new hit on its hands. They’ve discovered new Linux kernel vulnerabilities and describe how a properly formed TCP network packet can cause the kernel to panic or slow down. There are three kinds. Two affect Linux kernels. (The other is for FreeBSD so won’t be described further.) All are dangerous because they can be executed remotely.

Read More

How to Secure Linux by Patching in Real-Time

Jun 18, 2019 7:34:00 PM / by KernelCare Team posted in KernelCare Blog

0 Comments

How to Secure Linux by Patching in Real-Time

If anyone tells you that they know how to secure linux, but they fail to mention live patching – don’t listen to them. Keeping servers automatically up to date is key to keeping them safe. In the complex security question of how to secure Linux, patching live, in real-time, is the missing link.

Read More

    Subscribe to Email Updates

    Recent Posts