TechRadar

Docker API targeted by cryptojacking campaign looking to build mega botnet

Hackers have been spotted using the Docker Engine API to target various containers with cryptojackers and other malware. Cybersecurity researchers at Datadog, who recently observed one such campaign ...
Communications of the ACM

A Decade of Docker Containers

Docker is a widely used developer tool that first simplifies the assembly of an application stack (docker build), then allows for the rapid distribution of the resulting executabl ...
CSOonline

Misconfigured Docker API endpoints allow attackers to deliver DDoS botnet agent

A new attack campaign deploys malicious container images on cloud servers by exploiting insecure Docker Engine API endpoints. The malicious image contains a distributed denial-of-service (DDoS) botnet ...
TechRadar

Misconfigured Docker instances are being hacked to mine cryptocurrency

Security researchers spot new campaign targeting Docker instances The attack deploys a cloud crypto miner, and a worm for further propagation The miner generates the Dero currency Hackers are building ...
CSOonline

Docker re-fixes a critical authorization bypass vulnerability

Open source containerization platform Docker has urged users to patch a critical vulnerability affecting certain versions of the Docker Engine that allows privilege escalation using specially crafted ...