Cloud News Now | July 2024
Welcome to the July edition of Cloud News Now, your go-to source for the latest security updates and insights from Aqua. This month, we highlight recent security research from Aqua Nautilus, and preview all the exciting sessions happening at Black Hat 2024 next week!
?? Kubernetes Exposed: Exploiting the Kubelet API
Kubelet API is a vital component in Kubernetes clusters that manages pods and their containers on each node. While it is not typically intended for direct user interaction, many DevOps teams may utilize the Kubelet API for debugging and direct node communication. However, exposing the Kubelet API to the public internet while enabling anonymous unauthenticated requests can lead to severe security implications, including unauthorized access and potential data breaches.??
In this blog, Aqua Nautilus researchers describe real-world attacks observed through our honeypot setup, showing that attackers aim to steal secrets to gain full control over clusters and move laterally across the cloud provider account. The blog highlights the techniques these attackers utilize. Learn how to protect your Kubernetes clusters against such attacks and ensure a robust security posture.?
Read the full blog here for a complete breakdown.
Aqua Security is gearing up for Black Hat 2024! ??
We are less than one week away! ? Which means it is time to start planning your week. Check out all the exciting talks Aqua Nautilus has planned, and add them to your agenda!
Breaching AWS Accounts Through Shadow Resources
?? Time: 10:20am-11:00am
?? Location: Islander EI, Level 0
Catch this talk as our security researchers present six critical vulnerabilities they discovered in AWS, along with the stories and methodologies behind them. These vulnerabilities, which were all promptly acknowledged and fixed by AWS, could have allowed external attackers to breach almost any AWS account.
领英推荐
CVE Half-Day Watcher: Hunting Down Vulnerabilities Before the Patch Drops
?? Time: 11:25am-12:35pm
?? Location: Business Hall - Arsenal Station 9
In this session, explore the critical gray areas between '0-day' and '1-day' vulnerabilities where attackers thrive.?We'll also?introduce our tool to detect open-source projects that are at risk from these flaws. Learn how vulnerabilities can be exploited during the 'Half-Day' window – when they're known but not yet fully disclosed or patched.
Traceeshark - Interactive System Tracing & Runtime Security using eBPF
?? Time: 4:25pm-5:35pm
?? Location: Business Hall - Arsenal Station 3
Join us for "TraceeShark Interactive System Tracing & Runtime Security using eBPF" and discover how we've merged Linux runtime security monitoring with Wireshark's powerful analysis capabilities. Learn about interactive filtering, advanced data aggregations, and simultaneous analysis of system events and network packets.
Add these sessions to your Black Hat agenda, and make sure to join us at booth #2514 to discover how Aqua Security protects your applications from code to cloud and back.
Thank you for staying informed with Aqua Security. Don’t forget to follow us for more cloud security updates!
Sales Director: Cybersecurity consultant | Relationship Builder | Son | Brother | Husband | Father
3 个月Insightful!