https://community.isc2.org/t5/Industry-News/Kubernetes/m-p/16876#M1968 <P>Even if you don't run Kubernetes (and I know <A href="https://community.isc2.org/t5/Tech-Talk/Kube-Cluster-and-Container-security/m-p/16866" target="_blank">some of you do</A>), you probably need to pay attention to their security bug.&nbsp; See, Kubernetes is an infrastructure component of a lot of cloud systems--and, nowadays, who isn't running, storing, or managing something in the cloud?</P><P>&nbsp;</P><P>The <A href="https://nakedsecurity.sophos.com/2018/12/05/kubernetes-cloud-computing-bug-could-rain-data-for-attackers/" target="_blank">flaw</A>, in brief, allows anyone to submit a malformed request to Kubernetes pods over the API.&nbsp; Rather than simply being ignored, this allows the attacker to then submit further requests without any authorization checking.&nbsp; Which means that attackers can do pretty much anything with the pods.&nbsp; Which means they can get at pretty much anything you've got on the cloud that is managed via Kubernetes.&nbsp; Or that anyone is managing on your behalf using Kubernetes ...</P><P>&nbsp;</P><P>The bug is now fixed.&nbsp; If you run Kubernetes make sure you are updated to the latest level.&nbsp; If you don't run Kubernetes, find out if anyone you rely on does ...</P> Mon, 09 Oct 2023 09:02:08 GMT rslade 2023-10-09T09:02:08Z https://community.isc2.org/t5/Industry-News/Kubernetes/m-p/16876#M1968 <P>Even if you don't run Kubernetes (and I know <A href="https://community.isc2.org/t5/Tech-Talk/Kube-Cluster-and-Container-security/m-p/16866" target="_blank">some of you do</A>), you probably need to pay attention to their security bug.&nbsp; See, Kubernetes is an infrastructure component of a lot of cloud systems--and, nowadays, who isn't running, storing, or managing something in the cloud?</P><P>&nbsp;</P><P>The <A href="https://nakedsecurity.sophos.com/2018/12/05/kubernetes-cloud-computing-bug-could-rain-data-for-attackers/" target="_blank">flaw</A>, in brief, allows anyone to submit a malformed request to Kubernetes pods over the API.&nbsp; Rather than simply being ignored, this allows the attacker to then submit further requests without any authorization checking.&nbsp; Which means that attackers can do pretty much anything with the pods.&nbsp; Which means they can get at pretty much anything you've got on the cloud that is managed via Kubernetes.&nbsp; Or that anyone is managing on your behalf using Kubernetes ...</P><P>&nbsp;</P><P>The bug is now fixed.&nbsp; If you run Kubernetes make sure you are updated to the latest level.&nbsp; If you don't run Kubernetes, find out if anyone you rely on does ...</P> Mon, 09 Oct 2023 09:02:08 GMT https://community.isc2.org/t5/Industry-News/Kubernetes/m-p/16876#M1968 rslade 2023-10-09T09:02:08Z