SDxCentral

Kubernetes gatekeeper platform at risk from new flaws

Vulnerabilities have been discovered in the Kubernetes gatekeeper platform Ingress-Nginx ahead of its planned obsolescence.
The Register on MSN

Public-facing Kubernetes clusters at risk of takeover thanks to Ingress-Nginx flaw

How many K8s systems are sat on the internet front porch like that ... Oh, thousands, apparently Cloudy infosec outfit Wiz has discovered serious vulnerabilities in the admission controller component ...
Hosted on MSN

Another open source project dies of neglect, leaving thousands scrambling

Opinion There were lots of announcements about Kubernetes at KubeCon North America in Atlanta. I should know, I was there from beginning to end. But the biggest Kubernetes story of all didn't get much ...
Infosecurity-magazine.com

IngressNightmare: Four Critical Bugs Found in 40% of Cloud Systems

Kubernetes customers using the popular Ingress NGINX Controller have been urged to patch four newly discovered remote code execution (RCE) flaws assigned a CVSS score of 9.8. Dubbed “IngressNightmare” ...
Hackaday

This Week In Security: IngressNightmare, NextJS, And Leaking DNA

This week, researchers from Wiz Research released a series of vulnerabilities in the Kubernetes Ingress NGINX Controller that, when chained together, allow an unauthorized attacker to completely take ...