Spectral researchers also discovered multiple instances of misconfigured Kafdrop interfaces exposing complete Kafka clusters to the public internet. Apparently, some of the world’s largest companies have exposed reams of sensitive information from the cloud due to misconfigured Kafdrop interfaces used for centralized management of the open-source platform.
Other remediation and mitigation strategies include encrypting data at rest in Kafka, and configuring applications to always encrypt when reading or writing data to and from Kafka; and, employing advanced misconfiguration scanners to help detect broken authentication, input sanitation problems and encryption errors.
Read More: Threatpost
For more such updates follow us on Google News ITsecuritywire News