Google Kubernetes Misconfig Lets Any Gmail Account Control Your Clusters – ITTS

Google Kubernetes Misconfig Lets Any Gmail Account Control Your Clusters

24 January 2024

Cybersecurity researchers have discovered a loophole impacting Google Kubernetes Engine (GKE) that could be potentially exploited by threat actors with a Google account to take control of a Kubernetes cluster. The critical shortcoming has been codenamed Sys:All by cloud security firm Orca.

Source: The Hacker News

Date:

24 January 2024

Categorie(s):

Tag(s):

Accounts, Clusters, Gmail, Google, Google Cloud

Cyberthreats linked to foreign actors aim to hinder Election Day proceedings5 November 2024
DocuSign’s API used to lure victims into e-signing fake invoices5 November 2024
Schneider Electric ransomware crew demands $125k paid in baguettes5 November 2024
How to Become a Chief Information Officer: CIO Cheat Sheet5 November 2024
Research: Extending corporate life of laptops by just one year can reduce harmful emissions by 25%5 November 2024