Pwning Cloud Vendors with Untraditional PostgreSQL Vulnerabilities
Offered By: Black Hat via YouTube
Course Description
Overview
Explore a critical security presentation that delves into vulnerabilities discovered in PostgreSQL-as-a-Service offerings by multiple cloud providers. Learn about severe isolation issues and their potential impact on cross-account access attacks. Discover how the research team uncovered these vulnerabilities, including the "ExtraReplica" vulnerability that led to cross-account access of customer databases in Azure Postgres Flexible server service. Gain insights from security experts Shir Tamari and Nir Ohfeld as they discuss the implications of these findings for cloud security and multi-tenant database services. Access the full abstract and presentation materials to deepen your understanding of these untraditional PostgreSQL vulnerabilities and their significance in the cloud computing landscape.
Syllabus
Pwning Cloud Vendors with Untraditional PostgreSQL Vulnerabilities
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube