Security News > 2021 > March > Docker Hub images downloaded 20M times come with cryptominers
Researchers found that more than two-dozen containers on Docker Hub have been downloaded more than 20 million times for cryptojacking operations spanning at least two years.
Docker Hub is the largest library of container applications, allowing companies to share images internally or with their customers, or the developer community to distribute open-source projects.
Aviv Sasson, part of the Palo Alto Networks threat intelligence team, Unit 42, discovered on Docker Hub 30 malicious images that are involved in cryptojacking operations.
Images from all but one account continue to be available on Docker Hub at the moment of writing.
Sasson believes his findings represent just a glimpse of the cloud-based cryptojacking operations, Docker Hub being just one of the public registries abused this way.
The full list of malicious Docker images that Sasson found is available in Unit 42's blog post.