Threat Post

Dangerous Kubernetes Bugs Allow Authentication Bypass, DoS

The flaws in the container technology, CVE-2019-16276 and CVE-2019-11253, are simple to exploit. A pair of bugs in the Kubernetes open-source cloud container software can be “highly dangerous” under ...
InfoWorld

Critical vulnerability in IBM API Connect could allow authentication bypass

Rated 9.8 out of 10 in severity, the flaw could allow a remote attacker to gain unauthorized access to applications.
Techzine Europe

IBM warns of critical flaw in API Connect

IBM is urging customers to immediately patch a critical vulnerability in API Connect. The flaw allows attackers to access applications without ...
Dark Reading

Exposed Kubernetes Clusters, Kubelet Ports Can Be Abused in Cyberattacks

Kubernetes clusters provide a scalable and resilient backbone to many modern Internet-facing applications. However, if adversaries can access the nodes in those clusters, they essentially take over ...
InfoQ

Ambassador: Building a Control Plane for an Envoy-Powered API Gateway on Kubernetes

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Dark Reading

Majority of Kubernetes API Servers Exposed to the Public Internet

Researchers with Shadowserver Foundation have discovered more than 380,000 open Kubernetes API servers exposed on the Internet. That represents 84% of all global Kubernetes API instances observable ...