Google Kubernetes Misconfig Lets Any Gmail Account Control Your Clusters – ITTS

Google Kubernetes Misconfig Lets Any Gmail Account Control Your Clusters

24 January 2024

Cybersecurity researchers have discovered a loophole impacting Google Kubernetes Engine (GKE) that could be potentially exploited by threat actors with a Google account to take control of a Kubernetes cluster. The critical shortcoming has been codenamed Sys:All by cloud security firm Orca.

Source: The Hacker News

Date:

24 January 2024

Categorie(s):

Tag(s):

Accounts, Clusters, Gmail, Google, Google Cloud

20 Best Linux Password Managers in 202428 April 2024
Reliable Web App Pattern: Now Optimizes Azure Migration with Enhanced Infrastructure and Security28 April 2024
Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks28 April 2024
Good Security Is About Iteration, Not Perfection.28 April 2024
Week in review: Two Cisco ASA zero-days exploited, MITRE breach, GISEC Global 202428 April 2024