Push-Pull-Pwn: Hacking the Cloud through Container Registry Poisoning
Hillai, Nir
fwd:cloudsec North America 2026 · Day 1
This talk, "Push-Pull-Pwn: Hacking the Cloud through Container Registry Poisoning," delivered by Hillai and Nir from Wiz Research, uncovers a critical and often under-discussed security risk: the container registry. Positioned as the central hub of modern cloud environments, container registries facilitate the lifecycle of container images, from build to deployment. The speakers demonstrate how these seemingly innocuous components, when misconfigured or vulnerable, can become a single point of failure, bridging otherwise isolated environments and leading to widespread compromise.
AI review
Three real cloud compromises — Hugging Face, SAP, Azure ACI — chained through a unifying thesis about container registries as isolation-breaking chokepoints. The ACI backslash path traversal bypassing a .NET proxy to achieve cross-tenant cluster access is the kind of detail that makes a talk worth attending; that alone justifies the slot.