Technical

27 posts in this category

All Posts Company News Events Technical Compliance Product Thought Leadership

Technical April 24, 2026

Shai-Hulud Rides Again: The Bitwarden CLI Compromise and the Cascade We're Now Living In

On April 22, 2026, @bitwarden/cli@2026.4.0 was published with a credential-stealing payload — via a GitHub Action that was itself compromised in the Checkmarx breach a month earlier. The cascade is not a metaphor; it is the mechanism. Why supply chain velocity is outpacing upstream defenses, and why runtime enforcement is the only surface attackers cannot bypass.

By Hannes Ullman Read more

Technical March 31, 2026

When Trusted Security Tools Turn Against You: The TeamPCP Campaign and Why Runtime Protection Is No Longer Optional

In March 2026, the threat actor TeamPCP compromised Trivy, KICS, and LiteLLM — turning trusted security tools into credential stealers across thousands of CI/CD pipelines. We break down how the attacks cascaded, why traditional defenses failed, and how tailored AppArmor profiles enforce runtime protection that stops compromised components regardless of how they were infected.

By Hannes Ullman Read more

Technical March 17, 2026

CrackArmor: Our Assessment for Managed Kubernetes Workloads

Qualys disclosed nine vulnerabilities in Linux's AppArmor module, collectively named CrackArmor, affecting every distribution shipping AppArmor by default. We break down what this means for managed Kubernetes workloads, assess the real exploitability, and outline what you should do now.

By bifrost team Read more

Technical Thought Leadership February 6, 2026

Why Behavior Allow-Listing Beats Endless Detection Rules in Container Security (Part 2)

Modern container environments move fast, and so do attackers. Traditional security approaches based on signature matching or static detection rules are...

By Hannes Ullman Read more

Technical Thought Leadership February 3, 2026

Why Behavior Allow-Listing Beats Endless Detection Rules in Container Security (Part 1)

Modern container environments move fast, and so do attackers. Traditional security approaches based on signature matching or static detection rules are...

By Hannes Ullman Read more

Technical Thought Leadership January 14, 2026

Containers changed the attack surface. But security models didn’t

The shift from virtual machines to containers and Kubernetes fundamentally changed how software is built, shipped, and operated. Infrastructure became...

By Hannes Ullman Read more

Technical November 28, 2025

🔐 Why Linux Security Modules Matter More Than Ever

Linux sits at the heart of modern infrastructure: cloud platforms, edge devices, containers, and everything in between. With so much at stake, security can’t...

By Hannes Ullman Read more

Technical Product November 7, 2025

RunC vulnerabilities and the case for tailored runtime defense

**When your container runtime is the target** RunC sits at the heart of nearly every container platform, from Docker and containerd to Kubernetes nodes. This...

By Hannes Ullman Read more

Thought Leadership Technical November 5, 2025

The Hidden Risks of AI-Coding: Hallucinated Dependencies

Hallucinated dependencies become a vulnerability when attackers exploit common package names generated by AI models. This is called slopsquatting, and it is a...

By Hannes Ullman Read more

Technical Product September 25, 2025

1 minute about AppArmor

AppArmor is a mandatory access control (MAC) Security Module that restricts the capabilities and permissions of a containerized workload. The permissions are...

By Hannes Ullman Read more

Technical Product September 3, 2025

⚠️The vulnerabilities you didn’t know you inherited ⚠️

Are you confident that every dependency in your codebase is secure? That quick-fix plugin four years ago that somehow became permanent? As the usage of...

By Hannes Ullman Read more

Technical June 17, 2025

The Role of LSMs

Linux powers everything from cloud servers to smart devices. With so much depending on it, robust security is a must, and that’s where Linux Security Modules...

By Bifrost Team Read more

Technical June 2, 2025

Top security threats of Kubernetes

As Kubernetes continues to dominate container orchestration, securing your clusters is more critical than ever. While its flexibility and scalability make it a...

By Bifrost Team Read more

Technical April 9, 2025

The Role of Linux Security Modules

Linux powers everything from cloud servers to smart devices. With so much depending on it, robust security is a must — and that’s where **Linux Security...

By Bifrost Team Read more

Events Technical March 21, 2025

Exploring Behavioral Profiling with SIG Security 🚀

Sweden’s top network for IT security professionals is hosting an exciting session with the @bifrost team**. ** The session will explore how behavioral...

By Bifrost Team Read more

Technical Product March 12, 2025

Boosting Security with AppArmor 🚀

bifrost’s service leverages AppArmor, a Linux Security Module, to protect applications. But how does AppArmor work to protect your software? Let’s take a...

By Bifrost Team Read more

Thought Leadership Technical February 19, 2025

Industry series: HealthTech 🔎

Over the last decade, software, cloud computing and AI have increasingly been incorporated into healthcare. This has caused healthcare to move to online...

By Bifrost Team Read more

Technical Product February 14, 2025

A Tribute to Kubernetes Providers 🥇

Kubernetes providers make life easier for developers everywhere, especially for those of us wanting to use Kubernetes without the hassle of creating and...

By Bifrost Team Read more

Technical Thought Leadership January 24, 2025

The state of Kubernetes security 2024

As 2024 has come to an end, we take a look back at last year's Kubernetes environment. In a recent study by Redhat, insights from 600 professionals across...

By Bifrost Team Read more

Thought Leadership Technical December 18, 2024

Containerized Applications in Production - The New Norm

In the report “Protecting the Cloud Native Enterprise: Build the Foundation to Secure Your Containers in Runtime” by @Aqua, 90% of global organizations are...

By Bifrost Team Read more

Technical December 6, 2024

Boosting Security with AppArmor 🚀

bifrost’s service leverages AppArmor, a Linux Security Module, to protect applications. But how does AppArmor work to protect your software? Let’s take a...

By Bifrost Team Read more

Events Technical November 19, 2024

After-CNCF with bifrost

The Cloud Native Community Group - Meet up is approaching ☁️ bifrost’s very own CEO and Co-founder @Hannes Ullman is a speaker at the event. Don't miss out on...

By Bifrost Team Read more

Technical October 29, 2024

Good practices for k8s ⚙️

Did you know 86% of organizations have known vulnerabilities deployed in their software? In many cloud attack incidents, intruders access data and disturb...

By Bifrost Team Read more

Technical Product October 2, 2024

Our compatible Kubernetes providers

Kubernetes providers make life easier for developers everywhere, especially for those of us wanting to use Kubernetes without the hassle of creating and...

By Bifrost Team Read more

Technical September 27, 2024

Talos 1.8 is here! 🚀

Today we celebrate the newest release of Talos Linux! Talos Linux is Linux reimagined for the kubernetes world. It is designed from the ground up with a...

By Bifrost Team Read more

Technical September 16, 2024

Checklist for Container Security

Ensuring your containers and software are adequately protected is essential for any organization. However, navigating the jungle of container security is quite...

By Bifrost Team Read more

Events Technical August 29, 2024

Join Our Upcoming Roundtable Discussion 💬

bifrost security invites you to a virtual roundtable discussion this fall focused on the latest trends and strategies in container security. During the...

By Bifrost Team Read more