Siloscape malware targets Windows containers, breaks through to the underlying Kubernetes cluster

Siloscape malware targets Windows containers, breaks through to the underlying Kubernetes cluster

A reverse enginner has discovered what is claimed to be "the first known malware targeting Windows containers to compromise cloud environments," a sentence to put any system administrator on edge.


Building on work published in December of last year on reverse-engineering Windows containers, security researcher Daniel Prizmant's latest discovery – made during his day job at Palo Alto Networks' Unit 42 security arm – looks to punch holes in Kubernetes clusters, and has apparently succeeded in doing so across at least 23 known targets.


"Siloscape is heavily obfuscated malware targeting Kubernetes clusters through Windows containers," Prizmant wrote of the malware, which he first discovered in the wild in March. "Its main purpose is to open a backdoor into poorly configured Kubernetes clusters in order to run malicious containers."


A hidd ..

Support the originator by clicking the read the rest link below.