Poorly Secured Docker Image Comes Under Rapid Attack

2020-04-16 21:51

Akamai security researcher Larry Cashdollar set up the Docker image to see what kind of notice it might attract from the wider web's cadre of cyberattackers.

Accordingly, the Docker image soon came under fire, as outlined in a Wednesday analysis.

He found, interestingly, that attackers using the log-in combinations of root:admin, root:root or oracle:oracle would "Invariably use the Docker image as a SOCKS5 proxy through SSHd," explained the researcher.

A Mirai internet-of-things botnet also took aim at the Docker image and successfully infected it, which Cashdollar said was expected.

The third kind of attack targeting the Docker instance infected it with the XMRig cryptomining malware.

News URL

https://threatpost.com/poorly-secured-docker-image-rapid-attack/154874/

#attack #docker

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Docker		24	3	27	29	18	77

News URL

Related news

Related vendor