The Zeroday Cloud hacking competition in London awarded $320,000 to researchers for discovering critical zero-day vulnerabilities in cloud infrastructure components. The event highlighted significant security flaws in database systems, containerized environments, and cloud tenancy isolation, showcasing the evolving cyber threat landscape. #Redis #PostgreSQL #LinuxKernel #MariaDB #CloudSecurity
Keypoints
- The Zeroday Cloud competition focused on identifying vulnerabilities in cloud infrastructure components.
- Researchers successfully exploited 11 zero-day vulnerabilities across multiple sessions, earning substantial rewards.
- A key vulnerability involved a container escape in the Linux kernel, threatening cloud tenant isolation.
- Databases like Redis, PostgreSQL, and MariaDB were targeted, exposing critical security weaknesses.
- The total prize pool was $4.5 million, but the awarded amount was a small part of the potential bounty.