Over 300K Prometheus Instances Exposed: Credentials and API Keys Leaking Online

December 15, 2024

Cybersecurity researchers are warning that thousands of servers hosting the Prometheus monitoring and alerting toolkit are at risk of information leakage and exposure to denial-of-service (DoS) as well as remote code execution (RCE) attacks.
“Prometheus servers or exporters, often lacking proper authentication, allowed attackers to easily gather sensitive information, such as credentials and API

About The Author

See author's posts

Post Views: 1

Categories

Leave a Reply Cancel reply

Related Stories

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

Black Hat Europe 2024: Hacking a car – or rather, its infotainment system

Sophisticated Phishing Campaign Attempts to Bypass SEGs

AF themes

You may have missed

Black Hat Europe 2024: Hacking a car – or rather, its infotainment system

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

Sophisticated Phishing Campaign Attempts to Bypass SEGs

94% of U.K. Businesses Aren’t Adequately Prepared for AI-Driven Phishing Scams

About AF themes

Recent Posts

Connect with Us

About The Author

Leave a Reply Cancel reply

Related Stories

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

Black Hat Europe 2024: Hacking a car – or rather, its infotainment system

Sophisticated Phishing Campaign Attempts to Bypass SEGs

You may have missed

Black Hat Europe 2024: Hacking a car – or rather, its infotainment system

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

Sophisticated Phishing Campaign Attempts to Bypass SEGs

94% of U.K. Businesses Aren’t Adequately Prepared for AI-Driven Phishing Scams