Kubernetes - The Stack (Page 3)

Novel cloud attack pivoted from K8s to Lambda, pulled IAM keys from Terraform

A recent attack tracked by researchers at cloud security company Sysdig saw the attackers use an exposed Kubernetes container to move laterally to the victim’s AWS account – gaining initial access by exploiting a public-facing service in a self-managed Kubernetes cluster hosted inside an AWS cloud account. The company'...

The Stack March 01, 2023

Linux Foundation launches open source telco project

Sylva to provide solution to "edge/cloud continuum" challenges.

Eliot Beer November 15, 2022

This Azure bug is a perfect CVSS 10, gives you control over K8s clusters

This Azure bug is a perfect CVSS 10, gives you control over K8s clusters

A critical vulnerability in an Azure tool that lets users manage Kubernetes clusters can be exploited remotely without authentication to gain administrative control over Kubernetes clusters, as well as Azure edge devices. The vulnerability, allocated a maximum possible CVSS (severity rating) score of 10 has been allocated CVE-2022-37968. It is...

The Stack October 12, 2022