🚀 CloudSEK has raised $19M Series B1 Round – Powering the Future of Predictive Cybersecurity
Read More
CloudSEK's blog emphasizes the critical importance of API security in modern businesses, using the example of a logistics company with vulnerabilities in its Kong API Gateway. Their BeVigil Enterprise platform identified misconfigurations like unauthorized admin access, sensitive data exposure, and the compromise of super-admin tokens. These issues posed significant risks, including data breaches and operational disruptions. BeVigil's proactive approach integrates threat detection, actionable recommendations, and holistic risk mitigation to safeguard API infrastructures, ensuring business continuity and data security. Protecting APIs is a non-negotiable in the digital age.
Secure access to your organization's APIs using CloudSEK BeVigil Enterprise.
Schedule a DemoIn the world of digital connectivity, APIs are the lifeline of modern businesses, enabling seamless integrations and efficient service delivery. However, misconfigurations can expose critical vulnerabilities, leaving businesses susceptible to data breaches and operational disruptions. At CloudSEK, we empower organizations to proactively secure their API infrastructures with our flagship platform, BeVigil Enterprise. This blog demonstrates how BeVigil helped a prominent logistics company identify and resolve a significant API security gap.
During a routine scan of a major logistics company, BeVigil detected a misconfigured Kong API Gateway Admin Panel.
What is Kong API Gateway?
Kong is an open-source API gateway and micro-services management layer. It is designed to help organizations manage, secure, and optimize the traffic between their applications and services. Kong serves as an intermediary layer between clients and the backend services, providing a range of features to facilitate API management and improve overall system performance.
We identified few issues on the Kong API Gateway including:
The vulnerability posed risks to data security, operational continuity, and the organization's reputation.
‍
‍
CloudSEK's BeVigil API Scanner uncovered a misconfigured API tied to the Kong API Gateway Admin service. The exposed configuration data included sensitive details such as log file locations, process IDs, and database information, highlighting significant security risks.
‍
‍
‍
BeVigil’s Network Scanner scans ports every day to catch vulnerabilities for our customers. In this case, it detected a critical issue with port 8002, which was hosting the Kong Admin Panel. The panel was accessible without authentication or authorization, leaving the gateway exposed to unauthorized access.
‍
‍
BeVigil identified a serious risk with the Admin Panel exposing multiple API endpoints tied to key services. These endpoints widened the attack surface, allowing malicious actors to exploit them or even disable routes, disrupting legitimate access to critical services.
‍
‍
One of the most critical vulnerabilities was the exposure of a super-admin access token. This token granted full control over Kong Manager and Kong Admin API. Attackers could create arbitrary admin accounts with super-admin privileges, leading to a complete takeover of the Kong Manager.
‍
‍
‍
As a proof of concept, a security researcher successfully used the exposed token to create a new user named “shashank2,” confirming the exploit's feasibility.
‍
‍
BeVigil Enterprise is not just a vulnerability scanner—it is a comprehensive attack surface security platform tailored to address modern API challenges. Its key features include:
With BeVigil Enterprise, organizations can detect, remediate, and prevent vulnerabilities, ensuring the integrity of their digital operations. If your business relies on APIs, securing them is not optional—it is essential. At CloudSEK, we are committed to making the digital world safer for everyone.
Take action now
CloudSEK Platform is a no-code platform that powers our products with predictive threat analytic capabilities.
Digital Risk Protection platform which gives Initial Attack Vector Protection for employees and customers.
Software and Supply chain Monitoring providing Initial Attack Vector Protection for Software Supply Chain risks.
Creates a blueprint of an organization's external attack surface including the core infrastructure and the software components.
Instant Security Score for any Android Mobile App on your phone. Search for any app to get an instant risk score.
4
min read
CloudSEK's blog emphasizes the critical importance of API security in modern businesses, using the example of a logistics company with vulnerabilities in its Kong API Gateway. Their BeVigil Enterprise platform identified misconfigurations like unauthorized admin access, sensitive data exposure, and the compromise of super-admin tokens. These issues posed significant risks, including data breaches and operational disruptions. BeVigil's proactive approach integrates threat detection, actionable recommendations, and holistic risk mitigation to safeguard API infrastructures, ensuring business continuity and data security. Protecting APIs is a non-negotiable in the digital age.
In the world of digital connectivity, APIs are the lifeline of modern businesses, enabling seamless integrations and efficient service delivery. However, misconfigurations can expose critical vulnerabilities, leaving businesses susceptible to data breaches and operational disruptions. At CloudSEK, we empower organizations to proactively secure their API infrastructures with our flagship platform, BeVigil Enterprise. This blog demonstrates how BeVigil helped a prominent logistics company identify and resolve a significant API security gap.
During a routine scan of a major logistics company, BeVigil detected a misconfigured Kong API Gateway Admin Panel.
What is Kong API Gateway?
Kong is an open-source API gateway and micro-services management layer. It is designed to help organizations manage, secure, and optimize the traffic between their applications and services. Kong serves as an intermediary layer between clients and the backend services, providing a range of features to facilitate API management and improve overall system performance.
We identified few issues on the Kong API Gateway including:
The vulnerability posed risks to data security, operational continuity, and the organization's reputation.
‍
‍
CloudSEK's BeVigil API Scanner uncovered a misconfigured API tied to the Kong API Gateway Admin service. The exposed configuration data included sensitive details such as log file locations, process IDs, and database information, highlighting significant security risks.
‍
‍
‍
BeVigil’s Network Scanner scans ports every day to catch vulnerabilities for our customers. In this case, it detected a critical issue with port 8002, which was hosting the Kong Admin Panel. The panel was accessible without authentication or authorization, leaving the gateway exposed to unauthorized access.
‍
‍
BeVigil identified a serious risk with the Admin Panel exposing multiple API endpoints tied to key services. These endpoints widened the attack surface, allowing malicious actors to exploit them or even disable routes, disrupting legitimate access to critical services.
‍
‍
One of the most critical vulnerabilities was the exposure of a super-admin access token. This token granted full control over Kong Manager and Kong Admin API. Attackers could create arbitrary admin accounts with super-admin privileges, leading to a complete takeover of the Kong Manager.
‍
‍
‍
As a proof of concept, a security researcher successfully used the exposed token to create a new user named “shashank2,” confirming the exploit's feasibility.
‍
‍
BeVigil Enterprise is not just a vulnerability scanner—it is a comprehensive attack surface security platform tailored to address modern API challenges. Its key features include:
With BeVigil Enterprise, organizations can detect, remediate, and prevent vulnerabilities, ensuring the integrity of their digital operations. If your business relies on APIs, securing them is not optional—it is essential. At CloudSEK, we are committed to making the digital world safer for everyone.