Security · Flashcard

According to NSA/CISA, what are the three most common sources of Kubernetes cluster compromise?

  • ASupply chain risks, malicious threat actors, and insider threats — the guide's three vectors
  • BDenial-of-service floods, weak passwords, and outdated TLS — generic perimeter weaknesses
  • CMisconfigured Ingress, exposed dashboards, and default namespaces — common cluster mistakes
  • DContainer drift, image bloat, and noisy-neighbor contention — operational hygiene problems

Why this is the answer

Supply chain, malicious actors, and insiders are the three vectors NSA hardening mitigates. DDoS/weak-passwords/TLS are generic perimeter issues, not the cluster threat model; misconfigured Ingress/dashboards are symptoms of those vectors, not roots; drift/bloat/noisy-neighbor are ops-hygiene concerns, not security compromise sources.

Official docs
Study in Gnoseed →