Kubernetes

Critical vulnerability in Argo CD, a Kubernetes tool, allows attackers to spoof JSON web tokens and become administrators

On: May 24, 2022

Tagged: Argo CD, Common Vulnerability Scoring System (CVSS), Cyberattack, cybercrime, cybersecurity, GitOps, Hacking, incidents, Information Security, Kubernetes, privilege escalation, Security breach, security flaws, vulnerability

Maintainers of Argo CD, the continuous delivery (CD) tool for Kubernetes, announced the fix of a vulnerability that would have allowed threat actors to spoof JSON Web Tokens (JWTs) andRead More →

Researchers scanned the Internet for Kubernetes API servers; roughly 380k implementations allow some form of access

On: May 18, 2022

In: Cyber Security

Tagged: cybersecurity, hackers, Hacking, Hacking Tools, incidents, Information Security, Internet, IP addresses, IPv4, Kubernetes, research, security flaws, Shadowserver Foundation

Shadowserver Foundation, a non-profit security organization dedicated to collecting and analyzing data on malicious Internet activities, undertook a project to scan the Internet for Kubernetes API servers, finding some 380kRead More →

Zero-day vulnerability in Argo CD tool for Kubernetes allows stealing passwords and API keys from Kubernetes apps

On: February 8, 2022

In: Vulnerabilities

Tagged: Argo CD, Common Vulnerability Scoring System (CVSS), cybersecurity, data breach, Hacking, Information Security, Kubernetes, Security breach, security flaws, vulnerability, Zero-day vulnerability

Cybersecurity specialists report the detection of a critical zero-day vulnerability in Argo Continuous Deployment (Argo CD), a widely used Kubernetes tool for automation of the deployment of desired application statesRead More →

Critical Linux kernel flaw allows hacking Kubernetes containers to access files on host system

On: January 26, 2022

In: Vulnerabilities

Tagged: Common Vulnerability Scoring System (CVSS), Cyberattack, cybersecurity, Hacking, Information Security, Kubernetes, Linux, Linux Distros, Linux Kernel, privilege escalation, security flaws, vulnerability

Cybersecurity specialists report the finding of CVE-2022-0185, a severe vulnerability in the Linux kernel that can be exploited to evade containers in Kubernetes, allowing threat actors to access resources onRead More →

How to secure your Kubernetes systems from hackers? A detailed tutorial from NSA experts

On: August 4, 2021

In: Cyber Security

Tagged: Cryptojacking, cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Denial of Service (DDoS), Hacking, International Institute of Cyber Security (IICS), Kubernetes, National Security Agency (NSA), United States

A recent report from the Cybersecurity and Infrastructure Security Agency (CISA) points to the detection of multiple errors that allow the deployment of denial of service (DoS) attacks, theft ofRead More →

Kubernetes

Critical vulnerability in Argo CD, a Kubernetes tool, allows attackers to spoof JSON web tokens and become administrators

Researchers scanned the Internet for Kubernetes API servers; roughly 380k implementations allow some form of access

Zero-day vulnerability in Argo CD tool for Kubernetes allows stealing passwords and API keys from Kubernetes apps

Critical Linux kernel flaw allows hacking Kubernetes containers to access files on host system

How to secure your Kubernetes systems from hackers? A detailed tutorial from NSA experts

Critical Vulnerabilities in Cisco ASA & FTD Exposed! Learn How to Exploit CVE-2024-20353 and CVE-2024-20359

Dual Vulnerabilities in Microsoft SharePoint Server: Essential Steps to Mitigate Vulnerabilities

Exploiting the High-Risk Vulnerabilities in Secure Boot of Most Linux Devices on the Planet

Hackers’ New Target is containerized environments through vulnerabilities in runC

Hacking Android, Linux, macOS, iOS, Windows Devices via Bluetooth using a single vulnerability

110 Million AT&T Customers’ Data leaked: Inside the $370,000 Ransom Payment

How Hackers Stole Taylor Swift Tickets: The Full Ticketmaster Breach Story

Dark Web Sale: AMD’s Confidential Data Leaked – Full Story Revealed!

How Snowflake Hack is Linked to Santander(Spain, Chile, Uruguay) and Ticketmaster Breaches.Are You Affected?

Healthcare Hack Horror: Cyberattacks Leave French Hospitals in Chaos for $10 Million

Hacking the Unhackable: The Story of How CISA Was Breached

The Cloudflare Hack: A Hacker, 5000 Credentials, and Operation Code Red

One Man Scammed Spotify, Apple Music for 5 years with 4 BILLION Streams. How Artists Are Earning Millions Illegally?

Comparing CIS v8, CIS AWS Foundations Benchmark v1.5, and PCI DSS v4.0 for CSPM. Which you Should Start With?

MITRE EMB3D Explained: Top Threats to Embedded Devices and How EMB3D Mitigates Them

Google Gemini Under Fire: Critical Security Vulnerabilities You Need to Know to hack Gemini

Cracking SCCM Wide Open: Pentesting System Center Configuration Manager with Misconfiguration Manager

Hacking Windows 10 and 11 with DLL Search Order Hijacking without administrator rights

Hacking SSH Connections by exploiting SSH Protocol Vulnerabilities: Different Terrapin Attack Vectors

Understanding Latest DHCP DNS Vulnerabilities and How DHCP Exploits work in Active Directory

Hacking Bluetooth via MiTM: The BLUFFS Bluetooth attack to hack into Millions of Devices

6 Steps to File Anonymous SEC Complaints Against Data Breachers & Force Them to Pay Fines or Take Action

Inside the Exploit: How Your ChatGPT’s Uploaded Files Could Be Stolen by Prompt Injection Vulnerability

This Google Calendar technique allows to hack into companies without getting detected

This telegram bot is like ChatGPT for scammers to steal money from victims easily

How easy is to bomb someone mobile phone with thousands of SMS messages?

This new DDoS attack prevention technique has a 99% accuracy rate

The Dark Side of PDFs: How Opening a Simple PDF Could Unleash a Cybersecurity Nightmare

Largest soft drink bottle supplier, recycle and plastic manufacturers hacked by ransomware

Visited thesaurus.com in search for Synonyms? You have Coinminer malware infection

How to send malware via Teams, even “Safe Attachments” or “Safe Links” can’t protect you

2 Big Cloud hosting companies shutdown by ransomware and lose all customer data