
Sign up to save your podcasts
Or


Container security is often treated as a solved problem — namespaces, cgroups, and image hardening give teams confidence that workloads are properly isolated. But that confidence has a critical blind spot: every container on a host shares the same kernel. This episode of Cybersecurity examines one of the most dangerous exploitation paths in modern infrastructure — container escape via kernel modules — drawing on this in-depth breakdown of real-world container escape exploits and risks from the SEC research team.
The episode walks through the full attack chain — from initial foothold to full host compromise — and explores the misconfigurations that make it possible. Here's what's covered:
The episode closes with a reminder that none of these defenses are exotic — they're foundational practices. The gap between a secure container environment and a compromised one is often a handful of configuration decisions made for convenience rather than security. For more from the show on related cloud infrastructure risk, listen to Cloud Misconfigurations: Why They're Still the #1 Cause of Breaches.
SEC
By Eric LamannaContainer security is often treated as a solved problem — namespaces, cgroups, and image hardening give teams confidence that workloads are properly isolated. But that confidence has a critical blind spot: every container on a host shares the same kernel. This episode of Cybersecurity examines one of the most dangerous exploitation paths in modern infrastructure — container escape via kernel modules — drawing on this in-depth breakdown of real-world container escape exploits and risks from the SEC research team.
The episode walks through the full attack chain — from initial foothold to full host compromise — and explores the misconfigurations that make it possible. Here's what's covered:
The episode closes with a reminder that none of these defenses are exotic — they're foundational practices. The gap between a secure container environment and a compromised one is often a handful of configuration decisions made for convenience rather than security. For more from the show on related cloud infrastructure risk, listen to Cloud Misconfigurations: Why They're Still the #1 Cause of Breaches.
SEC