Learn about container threats, attacks, and security issues. Here are selected educational articles from the NeuVector blog.
A Dirty Cow Container Exploit Sticks Around Even After The Container Is Destroyed
We have seen a lot of reports on how the Linux kernel can be compromised by the Dirty Cow (CVE-2016-5195) exploit. You may think that the damage can be cleaned up if the compromised container is stopped and removed. However, that is not the case!
Public Cloud Threats
AWS Container Threats – How to Detect Threats in the Public Cloud
Today more and more applications are running in a public cloud in containers. A common question we hear is “Do AWS container threats exist and how can we detect them?”
MongoDB Ransomware Attacks Illustrate the Need for Both Traditional and New Security Techniques
The recently reported ransomware attacks on MongoDB are shocking not just by the sheer number of them – over 28,000 and counting – but also by how easily they were compromised.
How to Protect Against Elasticsearch Ransomware Attacks
As if it wasn’t already bad enough, the ransomware attacks on MongoDB users continue to spread and have now targeted exposed Elasticsearch clusters. Here’s how to protect Elasticsearch, one of the most popular containerized applications.
Container Network Security
Securing East-West Traffic in a Container-based Data Center
Enterprise applications moving into the cloud, either public or private, has been one of the most prominent trends in the tech industry. However, not enough attention has been paid to securing east-west (internal) traffic, especially now with containers.
Container Security Tips
15 Tips for a Run-time Container Security Strategy
Here are 15 tips for securing containers during run-time. We’ll start with some of the preparations for production deployment, then get into more advanced capabilities. You can also download the checklist.