Begin working on exercise 4.

data/workshop/exercise3.mdx

@@ -10,7 +10,7 @@ summary: ""
 
 Day one with Angie went great. After a refreshing overnight break spent watching the cinematic masterpiece of Shrek 2 you're back on site with the ACME team for day two of the consulting engagement.
 
-Your first task is to address complaints from Brent in the ACME Security team who has done some initial cluster checks and is upset that OpenShift internal network traffic is currently un-encrypted and has been ever since their cluster was deployed! 
+Your first task is to address a complaint from Brent in the ACME Security team who has done some initial cluster security checks to get a baseline. Brent is upset that OpenShift internal network traffic is currently un-encrypted and has been ever since their cluster was deployed! 
 
 Brent is pretty annoyed because the Red Hat sales team told him that OpenShift was **"secure by default"** so he wasn't expecting to see internal cluster traffic viewable in plain text between nodes in the cluster as this is a big no-no for the bank 🤬🙅
 

data/workshop/exercise4.mdx

@@ -0,0 +1,26 @@
+---
+title: Securing vulnerable workloads
+exercise: 4
+date: '2024-10-19'
+tags: ['openshift','security','cve management','rhacs']
+draft: false
+authors: ['default']
+summary: ""
+---
+
+IPSec was a quick job and the cluster is looking good after enabling it. Your afternoon job is to pair up with Angie again and review the vulnerability status of the ACME Financial Services workloads that are deployed on the cluster so far.
+
+Angie is really keen to tap into your knowledge on what she can do to make to the most of the Red Hat Advanced Cluster Security Platform.
+
+You're in a meeting room going over things together, so far so good.
+
+
+## 4.1 Oh *$%# that is really bad
+
+You're looking over the **Vulnerability Management** > **Workload CVE's** > **Namespace View** together in the RHACS console.
+
+You and Angie both spot it at the same time... 
+
+![panic](/static/images/security/panik.png)
+
+