CSOonline

Misconfigured Docker API endpoints allow attackers to deliver DDoS botnet agent

A new attack campaign deploys malicious container images on cloud servers by exploiting insecure Docker Engine API endpoints. The malicious image contains a distributed denial-of-service (DDoS) botnet ...

Over 10,000 Docker Hub images found leaking credentials, auth keys

More than 10,000 Docker Hub container images expose data that should be protected, including live credentials to production ...
TechRadar

Docker API servers being hit to spread cryptomining malware

Hackers are targeting vulnerable Docker remote API servers, and using them to mine cryptocurrencies on the underlying hardware, experts have warned. Cybersecurity researchers from Trend Micro stated ...
Techzine Europe

Docker Hub contains treasure trove of 10,000+ images with exposed secrets

Security research firm Flare discovered over 10,000 Docker Hub images containing exposed secrets during a single month of ...
CSOonline

Docker re-fixes a critical authorization bypass vulnerability

Open source containerization platform Docker has urged users to patch a critical vulnerability affecting certain versions of the Docker Engine that allows privilege escalation using specially crafted ...
TechRadar

Docker finally fixes a critical security flaw that could have allowed for account hijack

Five years ago, Docker fixed a critical-severity vulnerability in Docker Engine that allowed threat actors to bypass authorization plugins and escalate privileges on flawed instances. However, one of ...
XDA Developers on MSN

5 myths about Docker that I’m tired of hearing

Docker has transformed how we build, ship, and run applications. It has quickly become a crucial tool for developers and operations teams worldwide. Its power lies in simplifying deployment and ...