https://www.padok.fr/ https://www.padok.fr/en/blog https://www.padok.fr/en/blog/kubernetes-webhook-attackers Kubernetes Admission Controllers are elements that intercept Kubernetes API requests and can modify, accept or deny them.

After the installation of this webhook, every pod of your Kubernetes cluster will have a backdoored sidecar container. So the attacker will be able to come back to your Kubernetes cluster through any of the pod deployed.

The attacker introduces a differential between what we want to deploy and what is really deployed by your Kubernetes cluster.

Related Articles