Researchers found security pitfalls in IBM’s cloud infrastructure
The IBM Cloud is one of the world’s largest providers of cloud computing services.
The description of this newly found key in IBM Cloud’s identity and access management (IAM) API suggested it had both read and write privileges to the container registries, which would have given the researchers the ability to overwrite existing images with rogue ones. Developed by researchers from security firm Wiz, the attack combined a privilege escalation vulnerability in the IBM Cloud Databases for PostgreSQL service with plaintext credentials scattered around the environment and overly permissive internal network access controls that allowed for lateral movement inside the infrastructure. The researchers used the API token to read the configurations of the pods in their namespace and found the access key for four different internal container registries in those configuration files.
Source read time: 6 min - csoonline.com
Also offered in: Nederlands