Kubernetes Threat Intelligence: Detecting Domain Generation Algorithms

Presented by

Manoj Ahuje & Chris Gong - Tigera Threat Intelligence Research Team

About this talk

Malicious actors often use Domain Generation Algorithms (DGA) to exploit the DNS protocol and execute command-and-control (C & C) malware attacks. DGAs are very difficult to detect due to their dynamic and unpredictable nature. Traditional approaches to data security cannot contain DGA threats, with the problem exacerbated by the migration to Kubernetes and the cloud. Join us for this webinar where we share the latest insights into DGAs, the risks they present, along with best practices to speed detection and reduce risk. In this session, you will learn: - How the DNS / DGA / APT kill chain makes DGAs so hard to detect Why effective monitoring and visibility into Kubernetes and the cloud is essential - How you can detect a compromised workload with Calico Enterprise’s DGA machine learning capability
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (4)
Subscribers (3643)
Tigera provides zero-trust network security and continuous compliance for Kubernetes platforms that enables enterprises to secure containers and applications with a least privileges model and defense in depth. Tigera’s technology is recognized and trusted as the de facto standard for Kubernetes network security.