Latest Container news

Leaky Vessels flaws allow hackers to escape Docker, runc containers

Four vulnerabilities collectively called "Leaky Vessels" allow hackers to escape containers and access data on the underlying host operating system.
- Bill Toulas
- February 04, 2024
- 10:17 AM
- 0
Microsoft Excel to let you run Python scripts as formulas

Microsoft is adding the Python programming language to Microsoft Excel, allowing users to create powerful functions for analyzing and manipulating data.
- Lawrence Abrams
- August 22, 2023
- 10:51 AM
- 4
First-known Dero cryptojacking operation seen targeting Kubernetes

The first known cryptojacking operation mining the Dero coin has been found targeting vulnerable Kubernetes container orchestrator infrastructure with exposed APIs.
- Bill Toulas
- March 15, 2023
- 06:00 AM
- 0
Over 900,000 Kubernetes instances found exposed online

Over 900,000 misconfigured Kubernetes clusters were found exposed on the internet to potentially malicious scans, some even vulnerable to data-exposing cyberattacks.
- Bill Toulas
- June 28, 2022
- 06:39 AM
- 4
TeamTNT hackers target your poorly configured Docker servers

Poorly configured Docker servers and being actively targeted by the TeamTNT hacking group in an ongoing campaign started last month.
- Bill Toulas
- November 09, 2021
- 03:57 PM
- 0
Microsoft fixes bug letting hackers take over Azure containers

Microsoft has fixed a vulnerability in Azure Container Instances called Azurescape that allowed a malicious container to take over containers belonging to other customers on the platform.
- Ionut Ilascu
- September 09, 2021
- 11:08 AM
- 0
Docker Hub images downloaded 20M times come with cryptominers

Researchers found that more than two-dozen containers on Docker Hub have been downloaded more than 20 million times for cryptojacking operations spanning at least two years.
- Ionut Ilascu
- March 29, 2021
- 02:30 PM
- 0
Critical Bug In Harbor Container Registry Gives Admin Access

Attackers can exploit a critical security vulnerability in Harbor cloud native registry for container images to obtain admin privileges on a vulnerable hosting system.
- Ionut Ilascu
- September 19, 2019
- 03:28 AM
- 0
194 of The Top 1000 Docker Containers Don’t Have Root Passwords

Cisco Talos' discovery that the Alpine Linux distribution Docker image came with a blank root password (CVE-2019-5021) led to the discovery that 194 of the top 1000 most popular Docker containers also have no root passwords.
- Sergiu Gatlan
- May 21, 2019
- 03:30 AM
- 0
Bug in Alpine Linux Docker Image Leaves Root Account Unlocked

A security vulnerability in the Official Docker images based on the Alpine Linux distribution allowed for more than three years logging into the root account using a blank password.
- Ionut Ilascu
- May 08, 2019
- 07:59 PM
- 0
RunC Vulnerability Gives Attackers Root Access on Docker, Kubernetes Hosts

A container breakout security flaw found in the runc container runtime allows malicious containers to overwrite the host runc binary and gain root-level code execution on the host machine.
- Sergiu Gatlan
- February 11, 2019
- 02:10 PM
- 0
Escaping Containers to Execute Commands on Play with Docker Servers

Improperly secured privileged containers on the Play with Docker testing platform offered security researchers a way to escape Linux containers and run arbitrary code on the host system.
- Ionut Ilascu
- January 14, 2019
- 12:56 PM
- 0
Exploit Code for the Kubernetes Flaw Is Now Available

The recently disclosed critical-impact bug in Kubernetes created strong ripples in the security world of the container-orchestration system. Now, multiple demo exploits exist and come with easy-to-understand explanations.
- Ionut Ilascu
- December 10, 2018
- 08:06 AM
- 0
Kubernetes Updates Patch Critical Privilege Escalation Bug

A critical vulnerability in Kubernetes open-source system for handling containerized applications can enable an attacker to gain full administrator privileges on Kubernetes compute nodes.
- Ionut Ilascu
- December 04, 2018
- 11:12 AM
- 0
Exposed Docker APIs Continue to Be Used for Cryptojacking

Trend Micro has recently spotted an attacker that is scanning for exposed Docker Engine APIs and utilizing them to deploy containers that download and execute a coin miner. These containers then use scripts to spread to other systems.
- Lawrence Abrams
- October 27, 2018
- 09:11 AM
- 0