Overview
Explore a critical vulnerability in Kubernetes clusters using Argo CD, a popular GitOps continuous delivery tool, in this 36-minute conference talk from BSidesLV. Discover how attackers can exploit Argo CD server's elevated permissions to escalate privileges and gain full control over the cluster. Learn about the manipulation of Redis caching server data to deploy malicious pods, access sensitive information, and cover tracks. Understand the technical details, impact, and mitigation strategies for this high-severity vulnerability affecting major companies like TikTok, Spotify, and Mercedes-Benz. Gain insights into the importance of robust security measures in Kubernetes environments utilizing GitOps from speakers Oreen Livni Shein and Elad Pticha.
Syllabus
Breaking Ground, Tue, Aug 6, 12:30 - Tue, Aug 6, CDT
Taught by
BSidesLV