v09044g40000c4a59bjc77u49l210pig
Apr 23, 2026 19:47
· 0:59
· English
· Whisper Turbo
· 1 speakers
ይህ ትራንስክሪፕት በ 9 ቀናት
ለዘለቄታው ማስቀመጫ ማሻሻል →
ማሳየት ብቻ
0:00
S…
Speaker 1 (v09044g40000c4a59bjc77u49l210pig)
Snapchat just disclosed that they paid $25,000 for an exposed Kubernetes API that gave someone RCE and access to credentials. So let's talk about what's going on here. In describing the bug, the researcher says that he did a worldwide Kubernetes scan with binary edge, found an exposed API endpoint that didn't require authorization, and he was able to run commands. What does this even mean? Binary edge.
0:24
S…
Speaker 1 (v09044g40000c4a59bjc77u49l210pig)
attack surface identification. That just means they scan the whole internet looking for things that don't require authentication or like a username and password to access. So binary edge was used to find the unauthenticated Kubernetes API. But what the hell is that? Kubernetes is container management, which basically means it's the control system for a lot of cloud computer resources. So the researcher found that he could access this without a password, which gave him access to these without a password. Running commands here is a compromise of Snapchat.
0:53
S…
Speaker 1 (v09044g40000c4a59bjc77u49l210pig)
That's where they paid $25,000.
This transcript was generated by AI (automatic speech recognition). May contain errors — verify against the original audio for critical use. AI policy
ማጠቃለያ
የዚህን ትራንስክሪፕት AI ማጠቃለያ ለማምጣት ማጠቃለያ ላይ ጠቅ ያድርጉ
ማጠቃለያ...
ስለዚህ ትራንስክሪፕት AI ጠይቅ
ስለዚህ ጽሑፍ ማንኛውንም ነገር ጠይቁ - AI የሚመለከታቸውን ክፍሎች ያገኛል እናም መልስ ይሰጣል.