Cybercriminal group TeamTNT leaks DockerHub credentials
Researchers from Trend Micro have discovered cybercriminal group TeamTNT leaking credentials from two of their attacker-controlled accounts via exposed Docker REST APIs.
Docker
Doki malware targets exposed Docker servers in the cloud
Security researchers at Intezer Labs detected a new Linux malware dubbed “Doki” and cyber attack that uses blockchain wallet for generating command and control (C2) domain names.
XORDDoS and Kaiji DDoS botnets target internet exposed Docker servers
Security experts warn malware variants of XORDDoS and Kaiji distributed denial-of-service (DDoS) botnets are targeting exposed Docker servers.
Crypto miners exploit vulnerable Docker hosts
Security researchers from Imperva have found thousands of Docker hosts exposed to a new vulnerability and exposed remote Docker API. The new research describes the threat along with sample scripts and what can be done about it.
Serious open-source container vulnerability
A serious vulnerability in runc open-source container management has been discovered and patched. runc is used by most of the underlying container engines and runtime, such as Docker, cri-o, containerd, and Kubernetes.
Misconfigured Docker containers abused to deliver cryptocurrency mining malware
Researchers at Trend Micro have recently spotted malicious activity abusing systems running misconfigured Docker containers.
What Are Application Containers And How Do I Secure Them?
You may have wondered what application containers are, let alone how to secure them. The National Institute of Standards and Technology (NIST) sets out to explain the benefits and security concerns with application container technologies in the latest Special Publication (SP 800-190) Application Container Security Guide.
Cyber attack targets Docker installations
A new attack that uses Docker containers to hide, persist and plant malware was demonstrated at Black Hat by a team of security researchers from Aqua Security.