all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Securing PostgreSQL from Cryptojacking Campaigns in Kubernetes

Add to bookmarks
c
April 6, 2023, 6:38 p.m. |

Cloud Security Alliance cloudsecurityalliance.org

Originally published by CrowdStrike. PostgreSQL misconfiguration allows running shell commands on the underlying OS with the “COPY” SQL command and “pg_execute_server_program” roleKubernetes ingress can allow access to the PostgreSQL service, which can be targeted by the attackers to compromise pods and subsequently a clusterPostgreSQL is targeted by multiple opportunistic cryptojacking groups like WatchDog, TeamTNT and KinsingPostgreSQL is a powerful, open-source relational database manageme...

access attackers campaigns command compromise copy crowdstrike cryptojacking database kubernetes misconfiguration pods postgresql service shell sql teamtnt watchdog

Visit resource

More from cloudsecurityalliance.org / Cloud Security Alliance

Cl
12 Strategic Career Tips for Aspiring CISOs 3 days, 21 hours ago | cloudsecurityalliance.org
abnormal abnormal security can career +18
Cl
CISOs, AI, and OT: A Balancing Act Between Innovation and Protection 3 days, 22 hours ago | cloudsecurityalliance.org
act balancing act ben ciso +19
Cl
Microsoft Copilot for Security: Everything You Need to Know 4 days, 17 hours ago | cloudsecurityalliance.org
ai-powered copilot copilot for security cybersecurity +17
Cl
Cloud Security Alliance Releases Three Papers Offering Guidance for Successful Artificial Intelligence (AI) Implementation 4 days, 23 hours ago | cloudsecurityalliance.org
alliance artificial artificial intelligence best practices +33
Cl
Navigating the Cloud – Beyond “Best Practices” 5 days, 23 hours ago | cloudsecurityalliance.org
architectures best practices beyond businesses +17
Cl
Cyber Defense Magazine Names Cloud Security Alliance’s Certificate of Competence in Zero Trust (CCZT) a … 1 week ago | cloudsecurityalliance.org
alliance award build certificate +36
Cl
Defining Cloud Key Management: 7 Essential Terms 1 week, 4 days ago | cloudsecurityalliance.org
access access control breaches cloud +26
Cl
How DSPM Can Help Solve Healthcare Cybersecurity Attacks 1 week, 5 days ago | cloudsecurityalliance.org
access access controls article attacks +41
Cl
Considerations When Including AI Implementations in Penetration Testing 1 week, 5 days ago | cloudsecurityalliance.org
application artificial artificial intelligence ask +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Consultant infrastructure sécurité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

SOC Analyst

@ Wix | Tel Aviv, Israel
View on infosec-jobs.com

Information Security Operations Officer

@ International Labour Organization | Geneva, CH, 1200
View on infosec-jobs.com

PMO Cybersécurité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Third Party Risk Management - Consultant

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Consultant Cyber Sécurité H/F - Strasbourg

@ Hifield | Strasbourg, France
View on infosec-jobs.com
View more jobs