Recommended Mitigation
Enable Master Authorized Networks to restrict access to the cluster's control plane (master endpoint) to only an allowlist (whitelist) of authorized IPs. For more info: https://cloud.google.com/kubernetes-engine/docs/how-to/authorized-networks