Security News

Docker Malware Exploits Teneo Web3 Node to Earn Crypto via Fake Heartbeat Signals

2025-04-22 16:46

Cybersecurity researchers have detailed a malware campaign that's targeting Docker environments with a previously undocumented technique to mine cryptocurrency. The activity cluster, per Darktrace...

#crypto #docker #exploit #malware #signal

Experts Uncover New XorDDoS Controller, Infrastructure as Malware Expands to Docker, Linux, IoT

2025-04-18 07:10

Cybersecurity researchers are warning of continued risks posed by a distributed denial-of-service (DDoS) malware known as XorDDoS, with 71.3 percent of the attacks between November 2023 and...

#docker #infrastructure #IOT #linux #malware

Docker Desktop blocked on Macs due to false malware alert

2025-01-10 16:37

Docker is warning that Docker Desktop is not starting on macOS due to malware warnings after some files were signed with an incorrect code-signing certificate. [...]

#desktop #docker #MAC #malware

Perfctl malware strikes again as crypto-crooks target Docker Remote API servers

2024-10-24 02:30

Attacks on unprotected servers reach 'critical level' An unknown attacker is abusing exposed Docker Remote API servers to deploy perfctl cryptomining malware on victims' systems, according to...

#API #crypto #docker #malware #remote #server

Cybercriminals Exploiting Docker API Servers for SRBMiner Crypto Mining Attacks

2024-10-22 14:00

Bad actors have been observed targeting Docker remote API servers to deploy the SRBMiner crypto miner on compromised instances, according to new findings from Trend Micro. "In this attack, the...

#API #attack #crypto #cryptomining #cybercriminal #docker #mining #server

New Cryptojacking Attack Targets Docker API to Create Malicious Swarm Botnet

2024-10-01 05:12

Cybersecurity researchers have uncovered a new cryptojacking campaign targeting the Docker Engine API with the goal of co-opting the instances to join a malicious Docker Swarm controlled by the...

#docker #cryptojacking #swarm #attack #API #botnet

DockerSpy: Search for images on Docker Hub, extract sensitive information

2024-09-11 04:30

DockerSpy scans Docker Hub for images and retrieves sensitive information, including authentication secrets, private keys, and other confidential data. “DockerSpy was created to address the...

#docker

Docker-OSX image used for security research hit by Apple DMCA takedown

2024-08-31 14:16

The popular Docker-OSX project has been removed from Docker Hub after Apple filed a DMCA (Digital Millennium Copyright Act) takedown request, alleging that it violated its copyright. [...]

#apple #dmca #docker #research #security #takedown

You should probably fix this 5-year-old critical Docker vuln fairly sharpish

2024-07-25 13:46

Docker is warning users to rev their Docker Engine into patch mode after it realized a near-maximum severity vulnerability had been sticking around for five years. By sending a body-less request, an attacker can force the Docker Engine API client to forward that request to an authorization plugin, which may, in error, approve a request that would have been denied if the body content was forwarded to it.

#critical #docker

Docker fixes critical auth bypass flaw, again (CVE-2024-41110)

2024-07-25 11:51

A critical-severity Docker Engine vulnerability may be exploited by attackers to bypass authorization plugins via specially crafted API request, allowing them to perform unauthorized actions, including privilege escalation. "An attacker could exploit a bypass using an API request with Content-Length set to 0, causing the Docker daemon to forward the request without the body to the AuthZ plugin, which might approve the request incorrectly," Docker Senior Security Engineer Gabriela Georgieva explained.

#bypass #critical #CVE #docker #CVE-2024-41110

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News