Go offline with the Player FM app!
Vulnerabilities in the public cloud. [Research Saturday]
Manage episode 303093925 series 112238
Guest Ariel Zelivansky, Senior Manager of Security Research at Palo Alto Networks, joins Dave to discuss Unit 42's work on the first cross-account container takeover in the public cloud. The Unit 42 Threat Intelligence team has identified the first known vulnerability that could enable one user of a public cloud service to break out of their environment and execute code on environments belonging to other users in the same public cloud service. This unprecedented cross-account takeover affected Microsoft's Azure Container-as-a-Service (CaaS) platform. Researchers named the finding Azurescape because the attack started from a container escape – a technique that enables privilege escalation out of container environments.
The research can be found here:
- What You Need to Know About Azurescape
- Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances
Note: Microsoft is a sponsor of the CyberWire, however, we cover them as we would any other company.
Learn more about your ad choices. Visit megaphone.fm/adchoices
3066 episodes
Manage episode 303093925 series 112238
Guest Ariel Zelivansky, Senior Manager of Security Research at Palo Alto Networks, joins Dave to discuss Unit 42's work on the first cross-account container takeover in the public cloud. The Unit 42 Threat Intelligence team has identified the first known vulnerability that could enable one user of a public cloud service to break out of their environment and execute code on environments belonging to other users in the same public cloud service. This unprecedented cross-account takeover affected Microsoft's Azure Container-as-a-Service (CaaS) platform. Researchers named the finding Azurescape because the attack started from a container escape – a technique that enables privilege escalation out of container environments.
The research can be found here:
- What You Need to Know About Azurescape
- Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances
Note: Microsoft is a sponsor of the CyberWire, however, we cover them as we would any other company.
Learn more about your ad choices. Visit megaphone.fm/adchoices
3066 episodes
All episodes
×Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.