300,000+ Prometheus Servers and Exporters Exposed to DoS Attacks

This research identifies significant security risks in the Prometheus stack: widespread internet exposure of Prometheus servers and exporters (~336k assets) leading to sensitive information disclosure; exploitable /debug/pprof endpoints enabling DoS attacks that can crash hosts or Kubernetes pods; and RepoJacking vulnerabilities in exporters that could allow supply-chain remote code execution. The report includes Shodan scan counts, PoC for DoS, examples of leaked secrets and exposed subdomains/images, and recommends authentication, limiting public exposure, disabling or restricting pprof, resource limits, and validating open-source links.