DevOpsCube Bytes

Share this post
381,645 Kubernetes API servers Exposed to the Public Internet
bytes.devopscube.com

381,645 Kubernetes API servers Exposed to the Public Internet

Kubernetes Public API access report from Shadowserver

Bibin Wilson
Jun 7
Share this post
381,645 Kubernetes API servers Exposed to the Public Internet
bytes.devopscube.com

The report by Shadowserver shows that 454,729 public Kubernetes API endpoints in which 381,645 unique IPs allow some form of access.

Most accessible Kubernetes API servers are found in the United States – 201,348 (nearly 53%).

As per the report, 

"Public API access does not mean that these instances are fully open or vulnerable to an attack, it is likely that this level of access was not intended, and these instances are an unnecessarily exposed attack surface. They also allow for information leakage on version and builds."

The image from shadowserver shows the exposed cluster from all the countries.

References & Further Reading

[1]. Read the full report by shadowserver here

[2] API Security Issues Hinder Application Delivery

Thanks for reading DevOpsCube Bytes! Subscribe for free to receive new posts and support my work.

Share this post
381,645 Kubernetes API servers Exposed to the Public Internet
bytes.devopscube.com
Comments

Create your profile

0 subscriptions will be displayed on your profile (edit)

Skip for now

Only paid subscribers can comment on this post

Already a paid subscriber? Sign in

Check your email

For your security, we need to re-authenticate you.

Click the link we sent to , or click here to sign in.

TopNew

No posts

Ready for more?

© 2022 Bibin Wilson
Privacy ∙ Terms ∙ Collection notice
Publish on Substack Get the app
Substack is the home for great writing