#container-security

[ follow ]
#software-supply-chain #privilege-escalation #hardened-images #open-source #docker #human-error #kubernetes
Information security
fromTechzine Global
1 day ago

Critical kernel vulnerability affects a wide range of Linux distributions

A vulnerability in the Linux kernel allows local users to elevate privileges to root level, raising significant security concerns.
Information security
fromThe Hacker News
1 month ago

Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container Isolation

Nine confused deputy vulnerabilities in Linux kernel's AppArmor module allow unprivileged users to escalate privileges to root, bypass container isolation, and execute arbitrary kernel code.
fromTechzine Global
1 month ago

Linux security layer extremely vulnerable: 12.6 million systems affected

The vulnerabilities exploit a confused deputy attack. An unauthorized user can manipulate a privileged process to perform actions on their behalf, without having the necessary rights themselves. Specifically, attackers abuse tools such as Sudo or Postfix to modify AppArmor profiles via pseudo-files such as /sys/kernel/security/apparmor/.load and .replace.
Information security
Information security
fromInfoQ
2 months ago

BellSoft Survey Finds Container Security Practices Are Undermining Developers' Own Goals

Container security breaches are common and exacerbated by human error, bloated base images, and reliance on reactive defenses that expand production attack surfaces.
Information security
fromSecurityWeek
2 months ago

RapidFort Raises $42M to Automate Software Supply Chain Security

RapidFort raised $42 million to scale an automated platform that eliminates vulnerabilities by analyzing, hardening containers, supplying curated near-zero-CVE images, and reducing runtime attack surface.
fromInfoQ
2 months ago

Chainguard Finds 98% of Container CVEs Lurking Outside the Top 20 Images

Chainguard draws on telemetry from 290,000 images and almost half a billion builds to examine how customers actually consume and maintain open source components. It finds that foundational language and infrastructure images such as Python, Node, nginx, Go and Redis dominate production usage, forming what it describes as the baseline stack for the modern AI-driven software ecosystem.
Information security
fromTechzine Global
3 months ago

Developers struggle with container security

Almost a quarter of those surveyed said they had experienced a container-related security incident in the past year. The bottleneck is rarely in detecting vulnerabilities, but mainly in what happens next. Weeks or months can pass between the discovery of a problem and the actual implementation of a solution. During that period, applications continued to run with known risks, making organizations vulnerable, reports The Register.
Information security
Java
fromTheregister
3 months ago

Java devs want container security - not the hassle

Many Java developers prefer pre-hardened container providers because securing containers and related tooling is time-consuming, error-prone, and constrained by organizational resources.
DevOps
fromInfoQ
4 months ago

Docker Makes Hardened Images Free in Container Security Shift

Docker released over 1,000 hardened container images under Apache 2.0, providing secure, non-root, minimal base images with SBOMs and SLSA provenance for all developers.
Information security
fromTechzine Global
4 months ago

Docker removes paywall for hardened images

Docker is releasing Docker Hardened Images as free, Apache 2.0–licensed, Debian/Alpine-based pre-secured container images accessible to developers, teams, and organizations without license fees.
Information security
fromInfoQ
4 months ago

BellSoft Unveils Hardened Java Images

BellSoft's Hardened Images significantly reduce container vulnerabilities and resource use by combining Java runtime optimisation, OS hardening, and proactive CVE remediation.
fromTechzine Global
6 months ago

Docker makes secure images accessible to smaller businesses

Docker is launching a new subscription service for its Hardened Images catalog. The secure container images are designed to help organizations achieve near-zero CVEs without the high costs that were previously associated with this. With this launch, Docker is committed to democratizing container security. Every developer often starts their journey at Docker Hub. According to the company, this first step should be secure by default, without a premium price tag.
Information security
#docker
more#docker
E-Commerce
fromMedium
9 months ago

Migrating Amazon EKS to Bottlerocket AMI: Architecture, Real-World Issues & Fixes

Migrated to Bottlerocket OS for Kubernetes on Amazon EKS for better security and performance.
fromHackernoon
10 months ago

Mastering MCP Server Management with ToolHive | HackerNoon

In this blog, we're delving into ToolHive, a small tool that makes managing and deploying MCP servers remarkably simple and safe.
DevOps
DevOps
fromInfoQ
10 months ago

Flux 2.6 GA Release and Security Advancements

Flux v2.6.0 introduces OCI Artifacts and enhances GitOps practices by enabling independent operation of Flux controllers from Git repositories.
#cybersecurity
fromDevOps.com
1 year ago
DevOps

Minimus Unfurls Service for Accessing Secure Software Artifacts - DevOps.com

Minimus launched a managed service securing application development with minimal container images and virtual machines.
fromThe Hacker News
1 year ago
Privacy professionals

Storm-1977 Hits Education Clouds with AzureChecker, Deploys 200+ Crypto Mining Containers

Storm-1977 is targeting the education sector with cloud-based password spraying attacks using specialized tools.
more#cybersecurity
[ Load more ]