allArticles Conferences Presentations

Lateral Movements in Kubernetes

Conference: RSA Conference 2023

2023-04-24

Authors: Yossi Weizman

Abstract

As Kubernetes clusters usually reside in the cloud, access to a container in the cluster can be a foothold to the entire cloud workload. In this session we will dive into Kubernetes lateral movements. We will elaborate on the different methods attackers can use to move from a workload in the cluster to external cloud resources. We will share practical tools to mitigate and detect those threats.

Materials:

Tags:

Post a comment

Related work

From the Cluster to the Cloud: Lateral Movements in Kubernetes

Conference: Cloud Native SecurityCon North America 2023

Authors: Yossi Weizman, Ram Pliskin

Kubernetes to Cloud Attack Vectors: Demos Inside

Conference: KubeCon + CloudNativeCon North America 2022

Authors: Danny Hershko Shemesh, Alon Schindel

2022-10-26

Kubernetes Privilege Escalation: Container Escape == Cluster Admin?

Conference: Black Hat USA 2022

Authors:

2022-08-11

Disaster Recovery of Stateful Applications in a Multi-Cluster Environment

Conference: KubeCon + CloudNativeCon North America 2021

Authors: Shyam Ranganathan, Orit Wasserman

2021-10-13

The Power of Self-Managing Clusters

Conference: KubeCon + CloudNativeCon Europe 2023

Authors: Arun M. Krishnakumar, Sahithi Ayloo

2023-04-19

They Hacked Thousands of Cloud Accounts Then Sent Us Weird GIFs

Conference: BlackHat USA 2021

Authors:

2021-11-10