DevOpsCube Bytes

Share this post

381,645 Kubernetes API servers Exposed to the Public Internet

bytes.devopscube.com

381,645 Kubernetes API servers Exposed to the Public Internet

Kubernetes Public API access report from Shadowserver

Bibin Wilson
Jun 7, 2022
Share this post

381,645 Kubernetes API servers Exposed to the Public Internet

bytes.devopscube.com

The report by Shadowserver shows that 454,729 public Kubernetes API endpoints in which 381,645 unique IPs allow some form of access.

Most accessible Kubernetes API servers are found in the United States – 201,348 (nearly 53%).

As per the report, 

"Public API access does not mean that these instances are fully open or vulnerable to an attack, it is likely that this level of access was not intended, and these instances are an unnecessarily exposed attack surface. They also allow for information leakage on version and builds."

The image from shadowserver shows the exposed cluster from all the countries.

References & Further Reading

[1]. Read the full report by shadowserver here

[2] API Security Issues Hinder Application Delivery

Thanks for reading DevOpsCube Bytes! Subscribe for free to receive new posts and support my work.

Share this post

381,645 Kubernetes API servers Exposed to the Public Internet

bytes.devopscube.com
Comments
TopNew

No posts

Ready for more?

© 2023 Bibin Wilson
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great writing