Docker Security

17 Backdoored Malicious Images Removed From Docker Hub, But Are You Really Any Safer?

By Fei Huang Docker Hub recently removed 17 backdoored Docker images. This action came after Fortinet reported some cryptomining activity which linked back to these images. Here are some of the interesting facts: Backdoors were hidden inside the MySQL and Tomcat images, which are some of the most popular application containers on Docker Hub. These… Read more »

Docker Security

How to Deploy a Docker Container Firewall

By Gary Duan and Fei Huang Protecting Application Containers A Docker container firewall should be a ‘must-have’ requirement before deploying any container-based applications. In this post we’ll compare a couple ways to deploy a Docker container firewall –  manually vs. with a commercial solution such as NeuVector. However you choose to do this, you’ll want… Read more »

Docker Security

NeuVector Announces the Release of Enhanced Run-Time Protection for Suspicious Containers

Today at DockerCon in Copenhagen NeuVector announced and demonstrated new container protection features. We also announced that NeuVector customer Arvato would be sharing their microservices migration journey in session #126523. Enhanced Run-Time Protection for Suspicious Containers With the release of NeuVector’s new quarantine capability and other new protections at DockerCon Europe 2017, security teams can… Read more »

Docker Security

NeuVector Demonstrates VMware VIC Security for Containers

Docker container deployments bring new security concerns, even when deployed on VMs. In addition, getting adequate visibility and security for containers as they rapidly scale up or across hosts is virtually impossible without specialized tools. When containers run in a virtualized environment it can be difficult to keep track of application connections to determine whether… Read more »

Docker Security

Can the Linux Stack Clash Vulnerability Affect Containers?

The recently discovered ‘Stack Clash’ vulnerability in Linux-based systems is another critical security issue like Dirty Cow, but can the stack clash vulnerability affect containers, and what could an attacker do? The short answer is yes, an attacker could exploit the vulnerability to gain root privileges within a container, but not necessarily be able to… Read more »