Tag: kubernetes
-
Auch in Deutschland: Tausende Kubernetes-Cluster lassen sich aus der Ferne kapern
Mehrere Sicherheitslücken ermöglichen eine Remote-Kontrollübernahme von Kubernetes-Clustern. In Deutschland sind mehr als 1.000 Systeme betroffen. First seen on golem.de Jump to article: www.golem.de/news/auch-in-deutschland-tausende-kubernetes-cluster-lassen-sich-aus-der-ferne-kapern-2503-194691.html
-
Critical RCE flaws put Kubernetes clusters at risk of takeover
Two ways to mitigate the flaws: The best fix is to upgrade the Ingress-NGINX component to one of the patched versions. Admins can determine if it’s being used inside their clusters by typing: kubectl get pods all-namespaces selector app.kubernetes.io/name=ingress-nginxIn situations where an immediate version upgrade is not possible, admins can reduce risk by deleting the…
-
Getting the Most Value Out of the OSCP: The PEN-200 Labs
Tags: access, ai, attack, compliance, container, cyber, cybersecurity, dns, docker, exploit, firewall, guide, hacking, Hardware, infrastructure, intelligence, jobs, kubernetes, microsoft, mitigation, network, open-source, oracle, penetration-testing, powershell, risk, security-incident, service, siem, skills, technology, tool, training, vmware, vulnerability, windowsHow to leverage the PEN-200 simulated black-box penetration testing scenarios for maximal self-improvement and career success. Disclaimer: All opinions expressed in this article are solely my own. I have reviewed the content to ensure compliance with OffSec’s copyright policies and agreements. I have not been sponsored or incentivized in any way to recommend or oppose any…
-
Ingress-nginx vulnerabilities can lead to Kubernetes cluster takeover
Wiz researchers have unearthed several critical vulnerabilities affecting Ingress NGINX Controller for Kubernetes (ingress-nginx) that may allow attackers to take over … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/03/25/ingressnightmare-ingress-nginx-vulnerabilities-kubernetes-cluster-takeover/
-
Critical vulnerabilities put Kubernetes environments in jeopardy
Wiz researchers warned that several CVEs in Ingress NGINX Controller for Kubernetes make nearly half of all cloud environments at risk of takeover. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/critical-vulnerabilities-kubernetes-jeopardy/743448/
-
IngressNightmare Flaws Expose Kubernetes Clusters to Remote Hacking
Critical remote code execution vulnerabilities found by Wiz researchers in Ingress NGINX Controller for Kubernetes. The post IngressNightmare Flaws Expose Kubernetes Clusters to Remote Hacking appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/ingressnightmare-flaws-expose-many-kubernetes-clusters-to-remote-hacking/
-
Critical Unauthenticated Remote Code Execution Vulnerabilities inIngress NGINX
Summary Wiz Research has uncovered multiple critical unauthenticated remote code execution (RCE) vulnerabilities in theIngress NGINX Controller for Kubernetes, collectively known as IngressNightmare. These vulnerabilities First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2025/03/25/critical-unauthenticated-remote-code-execution-vulnerabilities-iningress-nginx/
-
IngressNightmare Flaws Expose Many Kubernetes Clusters to Remote Hacking
Critical remote code execution vulnerabilities found by Wiz researchers in Ingress NGINX Controller for Kubernetes. The post IngressNightmare Flaws Expose Many Kubernetes Clusters to Remote Hacking appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/ingressnightmare-flaws-expose-many-kubernetes-clusters-to-remote-hacking/
-
CVE-2025-1974: IngressNightmare Flaws Threaten Kubernetes Clusters
Critical Flaws in Ingress NGINX Controller Enable Remote Code Execution A newly disclosed set of five severe vulnerabilities, dubbed IngressNightmare by cloud security firm Wiz, has put more than 6,500 Kubernetes clusters at risk. These critical flaws impact the Ingress… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2025-1974-ingressnightmare-flaws-threaten-kubernetes-clusters/
-
IngressNightmare: Four Critical Bugs Found in 40% of Cloud Systems
Wiz Security finds four critical RCE vulnerabilities in the Ingress NGINX Controller for Kubernetes First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ingressnightmare-critical-bugs-40/
-
Public-facing Kubernetes clusters at risk of takeover thanks to Ingress-Nginx flaw
How many K8s systems are sat on the internet front porch like that … Oh, thousands, apparently First seen on theregister.com Jump to article: www.theregister.com/2025/03/25/kubernetes_flaw_rce_risk/
-
CVE-2025-1097, CVE-2025-1098, CVE-2025-1974, CVE-2025-24513, CVE-2025-24514: Frequently Asked Questions About IngressNightmare
Tags: access, advisory, attack, cve, cvss, exploit, flaw, hacker, injection, kubernetes, mitigation, network, open-source, vulnerability, zero-dayFrequently asked questions about five vulnerabilities in the Ingress NGINX Controller for Kubernetes, collectively known as IngressNightmare. Background The Tenable Security Response Team (SRT) has compiled this blog to answer Frequently Asked Questions (FAQ) regarding IngressNightmare. FAQ What is IngressNightmare? IngressNightmare is the name given to a series of vulnerabilities in the Ingress NGINX Controller…
-
‘IngressNightmare’ Vulnerabilities Are A Kubernetes Emergency: Wiz CTO
A series of critical zero-day vulnerabilities dubbed ‘IngressNightmare’ can enable full takeover of a Kubernetes cluster, and are ‘probably the most severe’ security issue to affect Kubernetes environments in recent years, Wiz CTO Ami Luttwak tells CRN. First seen on crn.com Jump to article: www.crn.com/news/security/2025/ingressnightmare-vulnerabilities-are-a-kubernetes-emergency-wiz-cto
-
Kubernetes Patch: 43% of Clusters Face Remote Takeover Risk
Immediate Patching Urged to Address Flaws in Widely Used Ingress Nginx Controller. Critical vulnerabilities in Ingress Nginx Controller – a widely used component of the popular Kubernetes container management system – need immediate patching to prevent attackers from taking control of cloud-based applications, management interfaces and more, researchers warned. First seen on govinfosecurity.com Jump to…
-
Critical ‘IngressNightmare’ Vulns Imperil Kubernetes Environments
More than 40% of all Internet-facing container orchestration clusters are at risk. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/critical-ingressnightmare-vulns-kubernetes-environments
-
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication
A set of five critical security shortcomings have been disclosed in the Ingress NGINX Controller for Kubernetes that could result in unauthenticated remote code execution, putting over 6,500 clusters at immediate risk by exposing the component to the public internet.The vulnerabilities (CVE-2025-24513, CVE-2025-24514, CVE-2025-1097, CVE-2025-1098, and CVE-2025-1974 ), assigned a CVSS score of First seen…
-
Aviatrix introduces Kubernetes firewall for cloud-native security
First seen on scworld.com Jump to article: www.scworld.com/brief/aviatrix-introduces-kubernetes-firewall-for-cloud-native-security
-
GitLab Vulnerabilities Allow Attackers to Bypass Security and Run Arbitrary Scripts
GitLab has urgently released security updates to address multiple high-severity vulnerabilities in its platform that could allow attackers to bypass security mechanisms, execute malicious scripts, and access sensitive data. The patches, included in versions 17.9.1, 17.8.4, and 17.7.6 for both Community Edition (CE) and Enterprise Edition (EE), mitigate critical risks affecting Kubernetes integrations, dependency management,…
-
Edera Banks $15M for Kubernetes Workload Isolation Tech
Seattle startup building technology to mitigate lateral movement and block “living off the land” techniques wins interest from investors. The post Edera Banks $15M for Kubernetes Workload Isolation Tech appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/edera-banks-15m-for-kubernetes-workload-isolation-tech/
-
DEF CON 32 Kubernetes Attack Simulation: The Definitive Guide
Author/Presenter: Leo Tsaousis Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/def-con-32-kubernetes-attack-simulation-the-definitive-guide/
-
What is SIEM? Improving security posture through event log data
Tags: access, ai, api, automation, ciso, cloud, compliance, data, defense, detection, edr, endpoint, firewall, fortinet, gartner, google, guide, ibm, infrastructure, intelligence, kubernetes, LLM, microsoft, mitigation, mobile, monitoring, network, openai, regulation, risk, router, security-incident, service, siem, soar, soc, software, threat, toolAt its core, a SIEM is designed to parse and analyze various log files, including firewalls, servers, routers and so forth. This means that SIEMs can become the central “nerve center” of a security operations center, driving other monitoring functions to resolve the various daily alerts.Added to this data are various threat intelligence feeds that…
-
Critical Vulnerability in Crowdstrike Falcon Sensor for Linux Enables TLS MiTM Exploits
CrowdStrike has disclosed a critical vulnerability (CVE-2025-1146) in its Falcon Sensor for Linux, its Falcon Kubernetes Admission Controller, and its Falcon Container Sensor. This flaw stems from a validation logic error in the handling of TLS (Transport Layer Security) connections, potentially exposing affected systems to man-in-the-middle (MiTM) attacks. The vulnerability underscores the importance of prompt…