Loading…
Attending this event?
Virtual Event
August 17–August 20, 2020

The schedule is subject to change. As we adjust to a virtual experience, our plan is to keep the sessions the same, which is dependent on speaker availability.

Learn More and Register to Attend This Event
Back To Schedule
Thursday, August 20 • 16:35 - 17:10
Advanced Persistence Threats: The Future of Kubernetes Attacks - Brad Geesaman, Brad Geesaman Consulting

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
What would happen if your cluster was successfully compromised by an attacker who understands Kubernetes at a deep level? How could they attempt to avoid detection, cover their tracks, achieve full cluster access, obtain persistence, steal credentials, and launch additional attacks in your environment? As Kubernetes grows in popularity, the sophistication of attackers will improve, and security by obscurity will no longer be sufficient. Cluster operators need to be aware of what a skilled and knowledgeable attacker can be capable of.

Let’s explore the dark corners of clusters and shine a light on how features such as ephemeral containers and validating webhooks can be used to maliciously mutate pods, exfiltrate data, deploy “shadow” control planes, and more. The audience will learn how to detect these advanced approaches and how to prevent these attacks using practical, proven methods.
Speakers
avatar for Brad Geesaman

Brad Geesaman

Kubernetes Security Consultant, Darkbit
Brad is an Independent Security Consultant helping clients improve the security of their Kubernetes clusters in cloud-native environments. Although he spent several years as a penetration tester, his real passion is educating others on the security risks inherent in complex infrastructure... Read More →

Thursday August 20, 2020 16:35 - 17:10
TBA
  Security + Identity + Policy
Feedback form isn't open yet.