Unmasking the Subnet Lookalike IP Ranges in Cloud Environments - Asaf Aprozper

Abstract: In the world of cloud computing, protecting networks from unauthorized access is critical. While some misconfigurations, such as allowing access from any IP address are widely known, a new and less-discussed risk has emerged: the use of lookalike private IP ranges. In a proactive hunt for possible unknown misconfigurations, it was revealed that cloud users mistakenly configured Security Groups and VPCs with IP ranges they believed were internal, but were actually publicly exposed to US cellular networks and potentially …

access address cloud cloud computing cloud environments computing critical environments hunt ip address misconfigurations networks private private ip proactive protecting risk subnet unauthorized access world