Malware attacks against millions of Docker Hub repositories have been underway since 2021. Assume all the content you host on a publicly accessible repository might be compromised.

The post Best of 2024: JFrog Reveals Docker Hub Compromise Spanning Millions of Repositories appeared first on Cloud Native Now.

Malware attacks against millions of Docker Hub repositories have been underway since 2021. Assume all the content you host on a publicly accessible repository might be compromised.

The post JFrog Reveals Docker Hub Compromise Spanning Millions of Repositories appeared first on Cloud Native Now.

Cado Security Labs today disclosed it has discovered a malware campaign, dubbed “Commando Cat,” that targets Docker API endpoints.

The post Cado Security Labs Exposes Commando Cat Container Malware Campaign appeared first on Cloud Native Now.

Cado Security identified an ongoing effort to abuse Docker containers using a 9hits service to create fraudulent web traffic.

The post Cado Security Labs Identifies Campaign to Compromise Docker Hosts appeared first on Cloud Native Now.

Deepfence today announced it has updated its open source ThreatMapper project to add expanded visualizations of attack paths and a scanner based on the YARA tool many security researchers use to identify and classify malware samples. In addition, version 4.1 of ThreatMapper now includes enterprise-grade cloud security posture management (CSPM)

The post Deepfence Expands Scope of Open Source Container Security Platform appeared first on Cloud Native Now.

Cloud security platform provider Lacework this week published a report that reveals cybercriminals are now creating backdoors in legitimate container images. Lacework Labs reports it has discovered that a threat actor, dubbed TeamTNT, has been creating backdoors in Docker images that went undetected by the IT teams that deployed those

The post Lacework Labs Finds Backdoors in Container Images appeared first on Cloud Native Now.

Prevasio, a provider of a cloud service for scanning container images, this week released a report based on a scan of 4 million public container images found in Docker Hub that concludes just over half the images (51%) were rife with critical vulnerabilities. Only 13% of container scans resulted in

The post Report: Docker Hub Container Vulnerabilities High appeared first on Cloud Native Now.

Security researchers at Intezer recently alerted the enterprise security community about Doki, a new and substantial malware targeting public Docker environments. Downloaded and installed via a Linux backdoor, Doki uses Dyn’s DynDNS service and a unique Domain Generation Algorithm (DGA) based on the Dogecoin cryptocurrency blockchain to locate its controller

The post Protecting Containers Against ‘Doki’ Malware appeared first on Cloud Native Now.

A pair of cybersecurity reports published this week suggests the level of cryptomining malware lurking in the Docker Hub repository is potentially greater than most IT teams realize. Aqua Security, a provider of tools for scanning container images, reports it has discovered no fewer than 23 container images stored in

The post Docker Hub Distributing Cryptomining Malware? appeared first on Cloud Native Now.

It’s a Docker admin’s worst nightmare: An attacker compromises a container, then uses it to gain control of the entire host server. A newly discovered security vulnerability in runC enables just that type of attack—at least in theory. The vulnerability, CVE-2016-9962, allows a process running inside a container to discover

The post RunC Bug Highlights Docker Security Challenges, But It’s Not Fatal appeared first on Cloud Native Now.