K8S API server without node authorization

Lateral movement

K8S API server without node authorization

Platform(s)

Compliance Frameworks

CCPA
CPRA
iso_27001_2022
iso_27002_2022
K8s CIS
K8s OWASP Top 10
Mitre ATT&CK
NIST 800-171
NIST 800-190
NIST 800-53
PDPA
STIG K8s
UK Cyber Essentials

Description

It was found that node authorization is not set in the k8s api server configuration file. Node authorization restricts the kubelet ability to read secrets and volumes in its node only. Without it, the environment might be vulnerable to lateral movement from one node to another.

Demo the Orca Platform-> In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.

K8S API server without node authorization

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS