Ingress Nightmare: How a Single Request Could Take Over Your K8s Cluster

https://is1-ssl.mzstatic.com/image/thumb/Podcasts116/v4/60/0a/44/600a44cc-ca50-c2ac-4bbe-29d59ef6cb53/mza_11065240647982243495.jpg/600x600bb.jpg

Crying Out Cloud

Wiz

52 episodes

2 weeks ago

Welcome to "Crying Out Cloud," the monthly podcast that keeps you up to date with the latest cloud security news. Hosted by experts Eden Naftali and Amitai Cohen, each episode provides in-depth coverage of the most important vulnerabilities and incidents from the previous month. Tune in for insightful analysis and expert recommendations to help you safeguard your cloud infrastructure.

Technology

RSS

All content for Crying Out Cloud is the property of Wiz and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_episode/37166984/37166984-1742911990238-62ec92e5b934d.jpg

Ingress Nightmare: How a Single Request Could Take Over Your K8s Cluster

Crying Out Cloud

22 minutes 26 seconds

8 months ago

Ingress Nightmare: How a Single Request Could Take Over Your K8s Cluster

🎙️ All you need to know on our latest discovery #IngressNightmare 🚨In this episode of Crying Out Cloud, Amitai Cohen & Eden Koby Naftali are joined by Nir Ohfeld — Head of Vulnerability Research at Wiz. Nir and his team have uncovered some of the most impactful vulnerabilities affecting cloud and SaaS applications. In this episode, he's diving into the latest discovery, a critical vulnerability in Ingress-NGINX:• How the team uncovered a critical unauthenticated RCE in NGINX Ingress Controller• Why Kubernetes admission controllers might be the next big attack surface• The wild journey of hunting vulnerabilities in the cloud