"The number of Kubernetes-based attack attempts has increased by 282 percent in just one year, with the IT sector being the hardest hit, accounting for 78 percent of all malicious activity."
"The attack on the crypto exchange involved a North Korean state-sponsored group exploiting a developer's workstation to deploy a malicious pod in the Kubernetes cluster, exposing an administrative service account token."
"Using the compromised token, the attacker authenticated with the Kubernetes API server, intercepted secrets, tampered with workloads, and planted a backdoor in a production pod, leading to the theft of millions in cryptocurrency."
Kubernetes is increasingly targeted by cyberattacks, with a 282% rise in attempts over the past year. The IT sector is the most affected, with 78% of malicious activities aimed at it. Notable incidents include breaches of crypto exchanges like Bybit, linked to the North Korean group Slow Pisces. Attackers exploit vulnerabilities by gaining access to developer workstations and deploying malicious pods in Kubernetes clusters. This allows them to access sensitive information and compromise financial infrastructures, resulting in significant cryptocurrency theft.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]