4h ago · 16 min read · On March 12, 2024, a Series B fintech startup leaked 4.2 million user records — including PII, bank account details, and transaction history — in 17 minutes flat. The root cause? A misconfigured Kubernetes 1.32 pod security admission controller that ...
Join discussion8h ago · 16 min read · At 03:14 UTC on August 12, 2024, our production Kubernetes cluster’s node agent triggered a critical alert: a Docker 27.0.3 container had escaped its sandbox, executed arbitrary code on the host, and exfiltrated 1.2TB of customer PII before our incid...
Join discussion11h ago · 14 min read · On March 12, 2024, a single unpatched Kubernetes 1.32 node in our 142-node production cluster was exploited via CVE-2024-3177, a pod escape vulnerability that allowed attackers to deploy ransomware across 89% of our workloads in 47 minutes, causing $...
Join discussion13h ago · 17 min read · In Q3 2024, a misconfigured Podman 5.5 runtime allowed an unprivileged container to escape to the host, compromising 12 production nodes, 400+ customer workloads, and 18TB of sensitive PII in 47 minutes. We lost $2.1M in SLA credits, and I almost los...
Join discussion
