One Article Review
| Source |  The Hacker News |
|---|---|
| Identifiant | 8624073 |
| Date de publication | 2024-12-12 19:54:00 (vue: 2024-12-12 15:13:30) |
| Titre | Over 300K Prometheus Instances Exposed: Credentials and API Keys Leaking Online |
| Texte | Cybersecurity researchers are warning that thousands of servers hosting the Prometheus monitoring and alerting toolkit are at risk of information leakage and exposure to denial-of-service (DoS) as well as remote code execution (RCE) attacks.
"Prometheus servers or exporters, often lacking proper authentication, allowed attackers to easily gather sensitive information, such as credentials and API
Cybersecurity researchers are warning that thousands of servers hosting the Prometheus monitoring and alerting toolkit are at risk of information leakage and exposure to denial-of-service (DoS) as well as remote code execution (RCE) attacks. "Prometheus servers or exporters, often lacking proper authentication, allowed attackers to easily gather sensitive information, such as credentials and API |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | 300k alerting allowed api are attackers attacks authentication code credentials cybersecurity denial dos easily execution exporters exposed: exposure gather hosting information instances keys lacking leakage leaking monitoring often online over prometheus proper rce remote researchers risk sensitive servers service such thousands toolkit warning well |
| Tags | |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.