Dark Reading

Docker Leaks API Secrets & Private Keys, as Cybercriminals Pounce

Container images shared on Docker Hub are leaking sensitive data in the cloud, to the tune of tens of thousands of secrets. And attackers are scooping these up to be used to compromise a wide range of ...
GitHub

jefrnc/mt5-docker-api

Pull and run the latest image from Docker Hub: ...
TechRadar

Docker APIs under attack once again

Cybercriminals have launched attacks against Docker APIs in the past but now they're building and running malicious container images on the host according to a new report from Aqua's Nautilus Team. In ...
GitHub

[BUG] Docker Provider "Fails to Retrieve Information" due to API v1.24 mismatch, despite using latest Image Digest (Cache Paradox)

After a "Core System Update" (Docker Daemon upgraded on Debian, now requiring API v1.44+), the Traefik Docker Provider has become "non-operational". The "Ground Truth ...
CSOonline

Misconfigured Docker API endpoints allow attackers to deliver DDoS botnet agent

A new attack campaign deploys malicious container images on cloud servers by exploiting insecure Docker Engine API endpoints. The malicious image contains a distributed denial-of-service (DDoS) botnet ...
TechRadar

Docker API servers being hit to spread cryptomining malware

Hackers are targeting vulnerable Docker remote API servers, and using them to mine cryptocurrencies on the underlying hardware, experts have warned. Cybersecurity researchers from Trend Micro stated ...
SiliconANGLE

Unpatched Docker hosts attacked in cryptojacking campaign

Hackers have successfully attacked hundreds of unpatched Docker hosts to run cryptomining scripts, according to a new report released Monday by security firm Imperva Inc. The new wave of attacks on ...