Security News

Another week of security mishaps is in the books Roundup Here's a quick summary of news in the world of information security beyond everything we've already covered.…

Suse developer Aleksa Sarai has uncovered a bug in the way that the container framework handles path names.

No Patch Available Yet, But Exploiting the Flaw Would Be 'Challenging'A security researcher has found a significant flaw all versions of Docker, an open source container platform, that can give...

A newly disclosed vulnerability in Docker could be exploited by a malicious attacker to escape the container and gain arbitrary read/write file access on the host with root privileges. read more

Tricky to exploit in the real world, which is good because no official fix is available yet A vulnerability in all versions of Docker can be potentially exploited by miscreants to escape...

An analysis of 1,000 popular Docker containers revealed that nearly 20% of them have nulled root passwords, Kenna Security says.  read more

Device Authority, a global leader in Identity and Access Management (IAM) for the Internet of Things (IoT), announced two of its latest KeyScaler platform developments with Microsoft Azure IoT Hub...

Alpine Linux Docker images available via the Docker Hub contained a critical flaw allowing attackers to authenticate on systems using the root user and no password.

For the past three years, Alpine Linux Docker images have been shipped with a NULL password for the root user, Cisco’s Talos security researchers have discovered.  read more

Here’s an overview of some of last week’s most interesting news and articles: Mozilla will block Firefox add-ons that contain obfuscated code Mozilla has announced that, starting from June 10,...