risks / Network destruction

Description

Allows an attacker to delete network components (such as endpoints, routes, VLANs, VPCs and the like). Implies denial-of-service when the network hosts a service. Removal of network firewall policies is covered by destruction:policy.

Risk: HIGH

Exploited in isolation, this risk has the potential to disrupt ancillary organization operations, cause reputational damage, or run afoul of compliance requirements.

Mitigations

  1. Network redundancy

Links

    (No links for this risk)

Affected Privileges

An attacker may be able to exploit this risk if they gain any of the following privileges:

Google Cloud Platform

Kubernetes

© 2023–present P0 Security and contributors to the IAM Privilege Catalog