Apr 12 · 2 min read · A Silent Assault: How Marimo’s Pre‑Auth RCE Is Hijacking Cloud Environments Security researchers have confirmed that the Marimo pre‑authentication remote code execution (RCE) flaw is now being actively weaponized in the wild. Attackers exploit the vu...
Join discussion
Mar 25 · 5 min read · Eliminating GCP Service Account Keys with Workload Identity Federation Static service account keys remain the single biggest identity risk in GCP environments. I find them in production across most new client engagements—embedded in CI/CD environment...
Join discussionMar 18 · 5 min read · How to Configure VPC Service Controls with Private IP Support on GCP Most GCP security architectures have a gap that shows up during SOC 2 audits: VPC Service Controls without private IP coverage. Teams enable VPC-SC thinking they've blocked data exf...
Join discussionMar 9 · 15 min read · Introduction In August 2025, Ghana’s government email infrastructure experienced a disruption that left ministries and agencies unable to access official .gov.gh email services for nearly three days.
Join discussion
Mar 8 · 8 min read · Machine identity management is the process of securing and managing identities for non-human entities such as servers, applications, and devices in cloud environments. Unlike human identity management, which focuses on people accessing systems, machi...
Join discussionMar 2 · 4 min read · As Kubernetes adoption surges across enterprise environments, attackers are developing increasingly sophisticated exploits targeting misconfigured clusters. In March 2026, CSO Online reported a sharp uptick in Kubernetes-specific attack tooling — fro...
Join discussionFeb 19 · 14 min read · The Uncomfortable Truth Run this command against any Kubernetes Secret in your cluster: kubectl get secret my-database-secret -o jsonpath='{.data.password}' | base64 -d That's it. One command. Your production database password is now in plaintext on...
Join discussion
Feb 12 · 3 min read · 🚀 Introduction In cloud security, access control is everything. While working on AWS IAM, I implemented two advanced security controls: ✅ Restrict access based on IP address ✅ Restrict access based on specific time window In this blog, I’ll show...
Join discussion
Feb 10 · 10 min read · Cloud Security and DevSecOps are some of the major areas of cybersecurity, and Cloud Computing Fundamentals is a beginner-friendly room that introduces us to some basics of cloud, like virtualization, containerization, types of cloud deployments, clo...
Join discussion
