Cloud native is rapidly adopted by many organisations and drawing the attention of attackers who invest more efforts into their attacks. Aqua Security's research team investigated tens of thousands of attacks against cloud native environments in the wild. In this talk, Zhihao Tan will discuss how attackers are leveraging open source content to escape detection and execute code in a target environment. Traditional software testing techniques are ill-equipped to detect these advanced threats that only initiate during runtime completely bypassing all security checks before deployment. Join Aqua Security's Mr Tan as he discusses best practices for today's cloud native software ecosystems, exploring:

• Advanced threats against the cloud native ecosystem
• Security implications of cloud native and DevOps methodologies
• Practical steps for detecting and mitigating risks before production deployment