BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//fwd-cloudsec-2026//speaker//Y3FGVK
BEGIN:VTIMEZONE
TZID:PST
BEGIN:STANDARD
DTSTART:20001029T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10;UNTIL=20061029T100000Z
TZNAME:PST
TZOFFSETFROM:-0700
TZOFFSETTO:-0800
END:STANDARD
BEGIN:STANDARD
DTSTART:20071104T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=11
TZNAME:PST
TZOFFSETFROM:-0700
TZOFFSETTO:-0800
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000402T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4;UNTIL=20060402T110000Z
TZNAME:PDT
TZOFFSETFROM:-0800
TZOFFSETTO:-0700
END:DAYLIGHT
BEGIN:DAYLIGHT
DTSTART:20070311T030000
RRULE:FREQ=YEARLY;BYDAY=2SU;BYMONTH=3
TZNAME:PDT
TZOFFSETFROM:-0800
TZOFFSETTO:-0700
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-fwd-cloudsec-2026-RVXDEY@pretalx.com
DTSTART;TZID=PST:20260601T161000
DTEND;TZID=PST:20260601T163000
DESCRIPTION:Kubernetes famously has a lot of moving parts\; clusters can ge
 t complicated very quickly and maintaining best security practice can be a
  challenge. What can make this harder is when good intentions to enhance s
 ecurity backfire and actually introduce risk. This talk looks at observabi
 lity tools in Kubernetes environments and how the nature of their position
 ing within a cluster\, along with often higher privileges\, can expose pri
 vilege escalation paths to attackers. This talk will cover specific exampl
 es of managed cluster observability tools exposing such risks with their '
 out-of-the-box' configuration\, as well as how these have been exploited i
 nside real-world production environments. Attendees will also take away re
 commendations for how cluster administrators can identify and mitigate suc
 h risks in their own workloads.
DTSTAMP:20260502T113342Z
LOCATION:Room 1
SUMMARY:Observing Escalation Paths in Kubernetes - William Taylor
URL:https://pretalx.com/fwd-cloudsec-2026/talk/RVXDEY/
END:VEVENT
END:VCALENDAR