"Active Kubernetes RCE Attack Relies on Known OpenMetadata Vulns"

According to Microsoft Threat Intelligence research, known vulnerabilities in OpenMetadata's open source metadata repository have been actively exploited since early April, allowing threat actors to launch Remote Code Execution (RCE) cyberattacks on unpatched Kubernetes clusters. OpenMetadata is an open source platform that serves as both a management tool and a central repository for metadata. Researchers published information in mid-March on five new vulnerabilities that impacted versions before v1.3.1. As many cybersecurity teams may have missed the advisory, adversaries took advantage of the opportunity to infiltrate vulnerable Kubernetes environments and mine cryptocurrency. This article continues to discuss findings regarding the active Kubernetes RCE cyberattack.

Dark Reading reports "Active Kubernetes RCE Attack Relies on Known OpenMetadata Vulns"

Submitted by grigby1

Submitted by Gregory Rigby on