Docker Security

Can the Linux Stack Clash Vulnerability Affect Containers?

The recently discovered ‘Stack Clash’ vulnerability in Linux-based systems is another critical security issue like Dirty Cow, but can the stack clash vulnerability affect containers, and what could an attacker do? The short answer is yes, an attacker could exploit the vulnerability to gain root privileges within a container, but not necessarily be able to… Read more »

Container Security

NeuVector Contributes Open Source Tool for Kubernetes CIS Benchmark for Security

Also is the First to Implement Distributed Security Auditing for Kubernetes 1.6 Deployments [UPDATE]: NeuVector open source tool and product now supports Kubernetes 1.7 and the newly release 1.8 CIS benchmark By Gary Duan The Center for Internet Security (CIS) recently released the Kubernetes CIS Benchmark for Kubernetes 1.6 security auditing. Many companies planning deployments… Read more »

Docker Security

The ‘SambaCry’ Samba Vulnerability in Containers

By Fei Huang There’s a new vulnerability which could affect containerized apps; this time it’s the Samba vulnerability affecting Linux networking. Samba allows non-Windows operating systems to share network shared folders, files, and printers with a Windows operating system. The network security space keeps catching people’s eyes recently with new exploits affecting popular systems. The… Read more »

Docker Security

WannaCrypt Ransomware Attacks

By Fei Huang “WannaCrypt ransomware attacks should make us wanna cry” is the CNN news headline for the world-wide ransomware attack which started last Friday (5/12). The data clearly showed that this was a very serious network attack: more than 20 hospital IT systems (Britain’s NHS had to cancel surgeries), more than 100 countries, large enterprises like Spanish… Read more »

Docker Security

DockerCon17 – My Container Security Perspective

By Gary Duan, CTO, NeuVector Last week was my first time going to the DockerCon conference, which I’ve heard is now attracting a more serious enterprise deployment audience. It was an exciting experience hearing about several major announcements and participating in interesting sessions. NeuVector was a sponsor and had a booth at the conference. It… Read more »