Collaborate Disseminate
I have a docker image running in Kubernetes that I suspect to contain a malicious code, unfortunately I can’t download it directly from the docker hub as there is a restriction on where it can be pulled.
Is there a way to dump this contain… Continue reading dump a pod from kubernetes [migrated]
Portainer Community Edition is an open-source, lightweight service delivery platform for containerized applications. It enables the management of Docker, Swarm, Kubernetes, and ACI environments. It provides a smart GUI and a comprehensive API to manage… Continue reading Portainer: Open-source Docker and Kubernetes management
A $1 billion commitment will send Cisco money to Cohere, Mistral AI and Scale AI. Continue reading Cisco Live 2024: Cisco Unveils AI Deployment Solution With NVIDIA
In Kubernetes clusters, we often wish to provide temporary credentials to the containerised processes running in a particular pod, usually marked by associating the pod with a service account.
Recently (in late 2023) AWS introduced "… Continue reading How do AWS "Pod Identities" compare to (OIDC) IRSA?
We deploy Spire to self-managed Kubernetes clusters on hyperscaler VMs (i.e. AWS EC2, Azure VMs, GCP Compute Engine)
Technically speaking, we could set up node attestation either based on VM instance identities (i.e. aws_iid, azure_msi, gc… Continue reading Difference between Spire node attestation with VM instance identities and Kubernetes projected service account tokens
Microsoft warns that several OpenMetadata vulnerabilities are being exploited to deploy cryptomining malware to Kubernetes environments.
The post OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining appeared first on S… Continue reading OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining
Microsoft has recently unveiled critical vulnerabilities within OpenMetadata’s open-source metadata repository. The security flaws could allow cybercriminals to execute remote code attacks on unpatched Kubernetes clusters. OpenMetadata is an open-source platform that offers a centralized metadata management solution for data lakes, pipelines, and warehouses. It enables businesses to discover, understand, and govern their data assets…
The post Cybercriminals Exploit OpenMetadata Flaws to Target Kubernetes Clusters appeared first on Petri IT Knowledgebase.
Continue reading Cybercriminals Exploit OpenMetadata Flaws to Target Kubernetes Clusters
Microsoft has recently unveiled critical vulnerabilities within OpenMetadata’s open-source metadata repository. The security flaws could allow cybercriminals to execute remote code attacks on unpatched Kubernetes clusters. OpenMetadata is an open-source platform that offers a centralized metadata management solution for data lakes, pipelines, and warehouses. It enables businesses to discover, understand, and govern their data assets…
The post Cybercriminals Exploit OpenMetadata Flaws to Target Kubernetes Clusters appeared first on Petri IT Knowledgebase.
Continue reading Cybercriminals Exploit OpenMetadata Flaws to Target Kubernetes Clusters
Please note this question is specifically to this CSI driver infrastructure and NOT to the K8s Secrets infrastructure.
Reviewing this implementation with regards to some enterprise work. The infrastructure handles a lot of internal sensiti… Continue reading K8s Secrets Store CSI Driver
Patch Tuesday: Microsoft warns that unauthenticated hackers can take complete control of Azure Kubernetes clusters.
The post Microsoft Plugs Gaping Hole in Azure Kubernetes Service Confidential Containers appeared first on SecurityWeek.
Continue reading Microsoft Plugs Gaping Hole in Azure Kubernetes Service Confidential Containers