First-Ever Cyber Attack Via Kubernetes RBAC to Create Backdoor on Clusters

22 April 2023

Threat actors can establish persistence on compromised clusters even after addressing the initial access misconfiguration by exploiting RBAC to enforce malicious access control policies. An Aqua Security team named ‘Nautilus’ made a discovery of this new type of attack, which they called ‘RBAC Buster.’ It has been reported that 60 misconfigured Kubernetes clusters were compromised as a result of this campaign.

Read full article on GBHackers

Date:

22 April 2023

Categorie(s):

NEWS

Tag(s):

Backdoors, Cluster Computing, Clusters, Containers, Create

Analyzing trends in cybersecurity: Funding, market consolidation and the role of AI9 May 2024
NATO and quantum computing are part of the cybersecurity agenda for IBM Consulting9 May 2024
RSAC: Three Strategies to Boost Open-Source Security9 May 2024
Nozomi Networks expands partnership with Mandiant to strengthen industrial and enterprise security9 May 2024
RSAC 2024: Securing ‘fragmented’ identities in the cloud age8 May 2024