LightNews LightNews
distroless.bsky.social
@distroless.bsky.social
6 followers 16 following 3 posts
Distroless. > Reducing attack surfaces in a world of supply chain noise.
DevSecOps | Cloud Native Security | AI Risk.
Shifting left until there’s nothing left to exploit.
Posts Replies Media Videos
distroless.bsky.social
This is why you don't store your API keys in your repo

www.reddit.com/r/googleclou...
#api #iam #security #rbac #cloud #cloudbill #gcp #gitleaks #gitguardian
From the googlecloud community on Reddit
Explore this post and more from the googlecloud community
www.reddit.com
December 24, 2025 at 6:44 PM
distroless.bsky.social
uk.news.yahoo.com/cyberattack-...
Don't share passwords via plaintext in emails 🤦‍♂️ #hacking #passwords #hack #breach #pwned
Cyberattack knocks France's postal service and its banking arm offline
The same services affected on Monday — Colissimo parcel tracking and the Digiposte digital vault — were already disrupted on Saturday, though La Poste did not immediately confirm whether that incident...
uk.news.yahoo.com
December 22, 2025 at 4:47 PM
distroless.bsky.social
Are MCP servers the next big gap in cyber security?

You cannot simply "scan" MCP servers for all their attack vectors with traditional app sec tools (sast, dast and sca)

I think there will be a lot more to come in this space in the coming years #ai #aisec #cybersec #sast #dast #hacking #mcp
December 20, 2025 at 3:30 PM
Reposted
thehackernews.com.web.brid.gy
DeepSeek AI Database Exposed: Over 1 Million Log Lines, Secret Keys Leaked
Buzzy Chinese artificial intelligence (AI) startup DeepSeek, which has had a meteoric rise in popularity in recent days, left one of its databases exposed on the internet, which could have allowed malicious actors to gain access to sensitive data. The ClickHouse database "allows full control over database operations, including the ability to access internal data," Wiz security researcher Gal
thehackernews.com
January 30, 2025 at 12:11 PM