Kinsing Malware Targets Kubernetes
Kinsing is an old-school Linux/Unix Executable and Link format (ELF) malware program that runs a cryptominer and attempts to spread itself to other containers and hosts.
Kinsing is an old-school Linux/Unix Executable and Link format (ELF) malware program that runs a cryptominer and attempts to spread itself to other containers and hosts.
The Kinsing malware is now actively breaching Kubernetes clusters by leveraging known weaknesses in container images and misconfigured, exposed PostgreSQL containers.
The large attack surface of Kubernetes’ default pod provisioning is susceptible to critical security vulnerabilities, some of which include malicious exploits and container breakouts. I believe one of the most effective workload runtime security measures to prevent such exploits is layer-by-layer process monitoring within the container.
Containers have become increasingly popular in recent years, they can be spun up quickly and offer developers the opportunity to deliver projects faster as well as gains in agility, portability and improved lifecycle management.
The Enable Sysadmin community continues to answer key questions about OpenShift and Kubernetes. Another year has gone by, and what a year it's been! We've had tons of news in the Kubernetes and OpenShift world, and an increasing number of companies are adopting this technology, which is dominating the container-orchestration market. Last year, I wrote an article about 2021's OpenShift and Kubernetes highlights, and guess what: This is the list for the year 2022! Once again, the Enable Sysadmin community did not fail to contribute their diverse and expert knowledge. Have fun with this selection of Enable Sysadmin's top articles of 2022 about Kubernetes and OpenShift Container Platform (OCP).
AWS has patched a vulnerability in its Elastic Container Registry (ECR) that was uncovered by Lightspin researcher Gafnit Amiga during an examination of AWS’s ECR APIs.