Tag: kubernetes

SUSE Fleet: Plain Text Storage of Vulnerability Exploit Helm Values

Sep 1, 2025 3:19 PM

Tags: advisory, cve, cyber, exploit, github, kubernetes, tool, vulnerability

A high-severity vulnerability in SUSE’s Fleet, a GitOps management tool for Kubernetes clusters, has been disclosed by security researcher samjustus via GitHub Security Advisory GHSA-6h9x-9j5v-7w9h. The vulnerability, tracked as CVE-2024-52284, allows Helm chart values”, often containing sensitive credentials”, to be stored inside BundleDeployment resources in plain text, exposing them to any user with GET or…
How to Streamline Your Kubernetes Add-On Updates and Stay Secure

Aug 30, 2025 5:23 AM

Tags: kubernetes, update
Your Map for the Cloud Security Maze: An Integrated Cloud Security Solution That’s Part of an Exposure Management Approach

Aug 29, 2025 12:23 AM

Tags: access, ai, attack, automation, business, ciso, cloud, container, control, cyber, cybersecurity, data, exploit, guide, identity, infrastructure, intelligence, kubernetes, mitigation, risk, strategy, threat, tool, vulnerability, vulnerability-management

Check out highlights from the IDC white paper “Bridging Cloud Security and Exposure Management for Unified Risk Reduction,” which explains how CNAPPs help security teams tame the complexity of multi-cloud environments by shifting from a reactive, alert-driven model to a proactive exposure management strategy. Organizations’ rapid expansion into the cloud has created a complex and…
Okta to Purchase Axiom Security to Bolster Privileged Access

Aug 27, 2025 12:23 AM

Tags: access, container, kubernetes, okta, startup

Just-in-Time, Database, Kubernetes Access Fuel Privileged Access Startup M&A. By acquiring startup Axiom Security, Okta aims to enhance privileged access by offering broader coverage of sensitive assets like Kubernetes containers and databases. The company says the move accelerates value delivery and complements Okta’s existing privileged access capabilities. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/okta-to-purchase-axiom-security-to-bolster-privileged-access-a-29303
Deploying SonarQube on Kubernetes with Helm Charts

Aug 25, 2025 7:54 PM

Tags: best-practice, kubernetes

By using a Helm Chart to deploy SonarQube Server, teams can quickly provision a production-ready SonarQube Server instance with minimal configuration while adopting best practices for scalability, security, and maintainability. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/08/deploying-sonarqube-on-kubernetes-with-helm-charts/
Kubernetes Capsule Vulnerability Enables Attackers to Inject Arbitrary Labels

Aug 20, 2025 12:53 PM

Tags: access, cvss, cyber, kubernetes, vulnerability

Security researchers have disclosed a critical vulnerability in Kubernetes Capsule v0.10.3 and earlier versions that allows authenticated tenant users to inject arbitrary labels into system namespaces, fundamentally breaking multi-tenant isolation. The vulnerability, tracked as CVE-2025-55205 with a CVSS score of 9.9, enables attackers to bypass security boundaries and access cross-tenant resources, potentially leading to cluster-wide compromise. Vulnerability…
Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework

Aug 9, 2025 12:11 AM

Tags: access, advisory, ai, attack, authentication, automation, backup, breach, china, cisa, cloud, computer, credentials, cve, cyber, cybersecurity, data, defense, detection, docker, exploit, framework, github, google, government, grc, group, guide, hacker, healthcare, identity, infrastructure, iot, ISO-27001, jobs, kubernetes, malicious, malware, mfa, microsoft, mitigation, monitoring, network, nist, open-source, password, programming, ransomware, resilience, risk, risk-management, service, social-engineering, software, startup, strategy, supply-chain, tactics, technology, threat, tool, update, vulnerability, zero-day

Check out what CISA found after it dissected malware from the latest SharePoint hacks. Plus, the U.K.’s cyber agency is overhauling its cyber framework to keep pace as threats escalate. In addition, Google is warning that cloud attacks are getting dangerously sophisticated. And get the latest on CISA’s new malware analysis platform and its report…
Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework

Aug 9, 2025 12:11 AM

Tags: access, advisory, ai, attack, authentication, automation, backup, breach, china, cisa, cloud, computer, credentials, cve, cyber, cybersecurity, data, defense, detection, docker, exploit, framework, github, google, government, grc, group, guide, hacker, healthcare, identity, infrastructure, iot, ISO-27001, jobs, kubernetes, malicious, malware, mfa, microsoft, mitigation, monitoring, network, nist, open-source, password, programming, ransomware, resilience, risk, risk-management, service, social-engineering, software, startup, strategy, supply-chain, tactics, technology, threat, tool, update, vulnerability, zero-day

Check out what CISA found after it dissected malware from the latest SharePoint hacks. Plus, the U.K.’s cyber agency is overhauling its cyber framework to keep pace as threats escalate. In addition, Google is warning that cloud attacks are getting dangerously sophisticated. And get the latest on CISA’s new malware analysis platform and its report…
What is a CISO? The top IT security leader role explained

Aug 8, 2025 9:12 AM

Tags: access, authentication, breach, business, ceo, cio, cisa, ciso, compliance, computer, container, control, corporate, credentials, cyber, cybersecurity, data, ddos, defense, dns, encryption, exploit, finance, firewall, framework, fraud, guide, Hardware, healthcare, infosec, infrastructure, intelligence, international, jobs, kubernetes, mitigation, msp, mssp, network, nist, programming, RedTeam, regulation, risk, risk-management, security-incident, service, skills, software, strategy, technology, threat, training, vpn, zero-day, zero-trust

. You’ll often hear people say the difference between the two is that CISOs focus entirely on information security issues, while a CSOs remit is wider, also taking in physical security as well as risk management.But reality is messier. Many companies, especially smaller ones, have only one C-level security officer, called a CSO, with IT…
PCI 4.0-Konformität sicherstellen durch File-Integrity-Monitoring für Container

Aug 7, 2025 4:11 PM

Tags: compliance, container, infrastructure, kubernetes, monitoring, PCI, vulnerability-management

Der zunehmende Einsatz von Containern hat die moderne Infrastruktur revolutioniert und ermöglicht schnellere Innovationen und eine größere Skalierbarkeit. Diese Transformation bringt jedoch auch eine neue Welle von Compliance-Herausforderungen mit sich. PCI-DSS 4.0 führt strengere Anforderungen für das Schwachstellenmanagement und das File-Integrity-Monitoring (FIM) in dynamischen Umgebungen wie Kubernetes und containerisierten Workloads ein. Für viele Sicherheits- und…
Love Your Kubernetes Add-Ons: Securing Kubernetes Beyond the Core

Aug 6, 2025 7:11 PM

Tags: best-practice, cloud, kubernetes
CISA releases Thorium, an open-source, scalable platform for malware analysis

Aug 4, 2025 2:28 PM

Tags: access, ceo, cio, cisa, compliance, container, control, cyber, cybersecurity, data, docker, framework, github, governance, incident response, kubernetes, malware, open-source, privacy, risk, skills, tool

Rethinking malware analysis at scale: Enterprise-grade malware analysis tools and platforms have been widely used in the security community. But many of them require paid licenses, lack orchestration at scale, or are difficult to integrate with enterprise workflows. Experts view Thorium as a significant democratization of advanced malware analysis technology.”It is a big deal as…
CloudReport 2025 Das neue Fundament der Cloud-Sicherheit steht auf drei Säulen

Aug 1, 2025 2:28 PM

Tags: ai, cloud, defense, kubernetes, open-source

Sysdig hat seinen aktuellen Cloud-Defense-Report 2025 veröffentlicht. Der Bericht enthält Erkenntnisse und Prognosen über die entscheidende Rolle von KI, Open-Source und Transparenz durch Runtime-Insights (Laufzeit-Analysen) im Kontext aktueller Cloud-Bedrohungen. Die Datengrundlage stammt aus einer sorgfältigen und methodisch fundierten Analyse von Millionen von Cloud-Konten und Kubernetes-Containern, die Sysdig-Kunden täglich betreiben und sichern. Die repräsentative Stichprobe umfasst…
Enterprise Kubernetes Management: What Is It Do You Have It?

Jul 30, 2025 10:28 PM

Tags: automation, cloud, governance, kubernetes
Kubernetes Image Builder Vulnerability Grants Root Access to Windows Nodes

Jul 22, 2025 9:40 AM

Tags: access, credentials, cve, cyber, exploit, flaw, kubernetes, vulnerability, windows

A critical vulnerability in the Kubernetes Image Builder has been disclosed that allows attackers to gain root access on Windows nodes by exploiting default credentials embedded in virtual machine images. Tracked as CVE-2025-7342, the flaw affects images built with the Nutanix or OVA providers in Kubernetes Image Builder versions v0.1.44 and earlier. CVE Identifier Description…
Calico: Open-source solution for Kubernetes networking, security, and observability

Jul 21, 2025 7:40 AM

Tags: cloud, kubernetes, open-source

Calico is an open-source unified platform that brings together networking, security, and observability for Kubernetes, whether you’re running in the cloud, on-premises, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/07/21/open-source-kubernetes-networking-security-observability/
Building scalable secrets management in hybrid cloud environments: Lessons from enterprise adoption

Jul 18, 2025 2:40 PM

Tags: access, backup, cloud, credentials, data, gitlab, group, iam, identity, infrastructure, jobs, kubernetes, leak, radius, service, supply-chain, tool

Lessons from integration: Identity, Kubernetes and CI/CD : Choosing a secrets management tool is the easy part. Integrating it across an enterprise is where the work begins. We started with identity. Manual user provisioning was not an option. We integrated Vault with our SSO platform using OIDC and mapped groups to Vault policies based on least privilege.…
An NVIDIA Container Bug & Chance to Harden Kubernetes

Jul 9, 2025 11:43 PM

Tags: access, ai, container, flaw, kubernetes, nvidia, threat

A container escape flaw involving the NVIDIA Container Toolkit could have enabled a threat actor to access AI datasets across tenants. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/nvidia-container-bug-harden-kubernetes
A NVIDIA Container Bug & Chance to Harden Kubernetes

Jul 9, 2025 9:40 PM

Tags: access, ai, container, flaw, kubernetes, nvidia, threat

A container escape flaw involving the NVIDIA Container Toolkit could have enabled a threat actor to access AI datasets across tenants. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/nvidia-container-bug-harden-kubernetes
Researchers Discover New Method to Identify Azure Arc in Enterprise Environments and Maintain Persistence

Jul 4, 2025 12:34 PM

Tags: business, cyber, cybersecurity, kubernetes, microsoft

Security researchers have discovered novel ways to identify and take advantage of Microsoft Azure Arc in business settings, which is a major advancement in cybersecurity and may reveal weaknesses in this hybrid management system. Introduced in 2019, Azure Arc extends Azure’s native management capabilities to non-Azure resources, including on-premises servers and Kubernetes clusters, through the…
Securing the next wave of workload identities in the cloud

Jul 2, 2025 2:35 PM

Tags: access, api, breach, cloud, computing, control, credentials, data-breach, identity, infrastructure, iot, jobs, kubernetes, mfa, password, risk, service, tool, vulnerability, zero-trust

Extending zero trust to workloads: Applying zero trust beyond just passwords is crucial. On the human side, MFA and conditional access are standard. For workloads, we implemented a similar approach using tokens, certificates and continuous checks. When one service calls another, it presents a cryptographic token or certificate, and the target service verifies it each…
How to Chart an Exposure Management Leadership Path for You, Your Boss and Your Organization

Jun 30, 2025 5:33 PM

Tags: access, attack, automation, breach, business, ciso, cloud, container, cybersecurity, data, defense, exploit, identity, incident response, iot, jobs, kubernetes, ransom, regulation, risk, security-incident, service, soc, threat, tool, vulnerability, vulnerability-management

Each Monday, the Tenable Exposure Management Academy provides the practical, real-world guidance you need to shift from vulnerability management to exposure management. In this post, we share some tips on how to lead the move to exposure management. You can read the entire Exposure Management Academy series here. For years, organizations poured resources into reactive…
Is Container OS Insecurity Making Your K8s Infrastructure Less Secure?

Jun 26, 2025 5:36 AM

Tags: cloud, compliance, container, infrastructure, kubernetes, risk
Kubernetes NodeRestriction Flaw Lets Nodes Bypass Resource Authorization

Jun 25, 2025 1:36 PM

Tags: cyber, flaw, kubernetes, vulnerability

A critical security vulnerability (CVE-2025-4563) in Kubernetes allows nodes to bypass authorization checks for dynamic resource allocation, potentially enabling privilege escalation in affected clusters. The flaw resides in the NodeRestriction admission controller, which fails to validate resource claim statuses during pod creation when the DynamicResourceAllocation feature is enabled. This oversight permits compromised nodes to create…
Amazon EKS Flaws Expose AWS Credentials and Enable Privilege Escalation

Jun 23, 2025 8:35 AM

Tags: cloud, container, credentials, cyber, flaw, kubernetes, service, vulnerability

Recent research has uncovered critical security flaws in Amazon Elastic Kubernetes Service (EKS) that could expose sensitive AWS credentials and enable privilege escalation within cloud environments. The vulnerabilities, rooted in misconfigurations and excessive container privileges, highlight the ongoing challenges of securing Kubernetes-based container platforms at scale. Amazon EKS is a managed service that simplifies running…
Enterprise Kubernetes Explained: How to Leverage K8s Effectively

Jun 21, 2025 11:35 AM

Tags: cloud, governance, kubernetes, strategy
Cybersecurity Snapshot: Tenable Report Spotlights Cloud Exposures, as Google Catches Pro-Russia Hackers Impersonating Feds

Jun 20, 2025 7:35 PM

Tags: access, advisory, ai, api, apple, attack, authentication, best-practice, business, cisa, cisco, cloud, conference, container, control, credentials, cve, cyber, cybersecurity, data, data-breach, detection, email, encryption, endpoint, exploit, google, governance, government, group, guide, hacker, Hardware, identity, infrastructure, intelligence, Internet, kubernetes, linux, macOS, microsoft, mitigation, mobile, monitoring, network, oracle, password, phishing, ransomware, risk, russia, service, social-engineering, software, sql, strategy, tactics, technology, threat, tool, update, vmware, vulnerability, windows

Check out highlights from Tenable’s “2025 Cloud Security Risk Report,” which delves into the critical risk from insecure cloud configurations. Plus, Google reveals a Russia-sponsored social engineering campaign that targeted prominent academics’ Gmail accounts. And get the latest on AI system security, just-in-time access, CIS Benchmarks and more! Dive into six things that are top…
A Guide to Managed Kubernetes-as-a-Service Shared Responsibility Model

Jun 14, 2025 5:54 AM

Tags: business, google, guide, kubernetes, microsoft, service
LinuxFest Northwest: Chaos Testing Of A Postgres Cluster On Kubernetes

Jun 13, 2025 10:54 PM

Tags: ceo, cisa, conference, kubernetes, penetration-testing

Author/Presenter: Nikolay Sivko (Co-Founder And CEO At Coroot) Our sincere appreciation to LinuxFest Northwest (Now Celebrating Their Organizational 25th Anniversary Of Community Excellence), and the Presenters/Authors for publishing their superb LinuxFest Northwest 2025 video content. Originating from the conference’s events located at the Bellingham Technical College in Bellingham, Washington; and via the organizations YouTube channel.…
K8s Infrastructure Design Assessment: Optimize Cloud-Native Foundation

Jun 6, 2025 9:55 AM

Tags: business, cloud, infrastructure, kubernetes