Advertisement
Top
image credit: Adobe Stock

Researchers found security pitfalls in IBM’s cloud infrastructure

December 1, 2022

Via: CSO Online
Category:
Security researchers recently probed IBM Cloud’s database-as-a-service infrastructure and found several security issues that granted them access to the internal server used to build database images for customer deployments. The demonstrated attack highlights some common security oversights that can lead to supply chain compromises in cloud infrastructure.

Developed by researchers from security firm Wiz, the attack combined a privilege escalation vulnerability in the IBM Cloud Databases for PostgreSQL service with plaintext credentials scattered around the environment and overly permissive internal network access controls that allowed for lateral movement inside the infrastructure.

Read More on CSO Online

RELATED PUBLICATIONS

Do you need to repatriate from the cloud?
DIY cloud cost management: The strategic case for building your own tools
IBM drops $6.4B for HashiCorp and its multicloud automation technology

Latest Publications

Do you need to repatriate from the cloud?
DIY cloud cost management: The strategic case for building your own tools
IBM drops $6.4B for HashiCorp and its multicloud automation technology
Cloud Curated Copyright © 2024. All rights reserved
Go to ITCurated!