Techzine Europe

Kubernetes v1.35: more secure, more flexible, no more ingress-nginx

The Kubernetes project has launched version 1.35 under the code name 'Timbernetes'. The release introduces 60 new features.
Hosted on MSN

Kubernetes overlords decide Ingress NGINX isn’t worth saving

Kubernetes maintainers have decided it’s not worth trying to save Ingress NGINX and will instead stop work on the project and retire it in March 2026.… Ingress NGINX is an ingress controller – a class ...
Hosted on MSN

Public-facing Kubernetes clusters at risk of takeover thanks to Ingress-Nginx flaw

Cloudy infosec outfit Wiz has discovered serious vulnerabilities in the admission controller component of Ingress-Nginx Controller that could allow the total takeover of Kubernetes clusters – and ...
CSOonline

Critical RCE flaws put Kubernetes clusters at risk of takeover

The vulnerabilities dubbed IngressNightmare can allow unauthenticated users to inject malicious NGINX configurations and execute malicious code into the Ingress NGINX pod, potentially exposing all ...
Dark Reading

Critical 'IngressNightmare' Vulns Imperil Kubernetes Environments

The maintainers of Kubernetes have released patches for four critical vulnerabilities in the Ingress NGINX Controller, affecting 6,500, or 41%, of all Internet-facing container orchestration clusters, ...
Infosecurity-magazine.com

IngressNightmare: Four Critical Bugs Found in 40% of Cloud Systems

Kubernetes customers using the popular Ingress NGINX Controller have been urged to patch four newly discovered remote code execution (RCE) flaws assigned a CVSS score of 9.8. Dubbed “IngressNightmare” ...
CRN

‘IngressNightmare’ Vulnerabilities Are A Kubernetes Emergency: Wiz CTO

A series of ‘critical’ zero-day vulnerabilities can enable ‘full takeover’ of a Kubernetes cluster — and are ‘probably the most severe’ security issue to affect Kubernetes environments in recent years ...