The Register on MSN

10K Docker images spray live cloud creds across the internet

Flare warns devs are unwittingly publishing production-level secrets Docker Hub has quietly become a treasure trove of live ...
Techzine Europe

Docker Hub contains treasure trove of 10,000+ images with exposed secrets

Security research firm Flare discovered over 10,000 Docker Hub images containing exposed secrets during a single month of ...
Dark Reading

Docker Leaks API Secrets & Private Keys, as Cybercriminals Pounce

Container images shared on Docker Hub are leaking sensitive data in the cloud, to the tune of tens of thousands of secrets. And attackers are scooping these up to be used to compromise a wide range of ...
CSOonline

Misconfigured Docker API endpoints allow attackers to deliver DDoS botnet agent

A new attack campaign deploys malicious container images on cloud servers by exploiting insecure Docker Engine API endpoints. The malicious image contains a distributed denial-of-service (DDoS) botnet ...
Hosted on MSN

You should probably fix this 5-year-old critical Docker vuln fairly sharpish

Docker is warning users to rev their Docker Engine into patch mode after it realized a near-maximum severity vulnerability had been sticking around for five years.… Now tracked as CVE-2024-41110, the ...
TechRadar

Docker API servers being hit to spread cryptomining malware

Hackers are targeting vulnerable Docker remote API servers, and using them to mine cryptocurrencies on the underlying hardware, experts have warned. Cybersecurity researchers from Trend Micro stated ...
CSOonline

Docker re-fixes a critical authorization bypass vulnerability

Open source containerization platform Docker has urged users to patch a critical vulnerability affecting certain versions of the Docker Engine that allows privilege escalation using specially crafted ...