Unfixable Kubernetes Security Hole Means Potential Man-in-the-Middle Attacks

8 December 2020

if a hostile user can create a ClusterIP service and set the spec.externalIPs field, they can intercept traffic to that IP. In addition, if a user can patch the status of a LoadBalancer service, they can also grab traffic. Now, the latter is a privileged operation and Joe and Jane User shouldn’t have that right, but, in practice, mistakes are made and it happens.

Read full article on The New Stack

Date:

8 December 2020

Categorie(s):

NEWS

Tag(s):

Attacks, Hole, IT, Potential, Tutorials

US Voters Urged to Use Official Sources for Election Information5 November 2024
Tor and Tails Team Up for Better Online Privacy Protections5 November 2024
Beware of phishing emails delivering backdoored Linux VMs!5 November 2024
Lumifi acquires Critical Insight to boost incident response capabilities5 November 2024
Hackers Deploy CRON#TRAP for Persistent Linux System Backdoors5 November 2024