risks / Infrastructure destruction

Description

Allows an attacker to delete infrastructure. May cause interruption of services (including central operations of the organization). Can be similar in effect to a denial of service.

Risk: HIGH

Exploited in isolation, this risk has the potential to disrupt ancillary organization operations, cause reputational damage, or run afoul of compliance requirements.

Mitigations

  1. Define infrastructure as code

Links

    (No links for this risk)

Affected Privileges

An attacker may be able to exploit this risk if they gain any of the following privileges:

Google Cloud Platform

Kubernetes

© 2023–present P0 Security and contributors to the IAM Privilege Catalog