Comment: Latest Docker Container Attack Highlights Remote Networking Flaws

It has been reported that a security flaw that provides a backdoor through which Docker containers can be compromised via unsecured remote connections may require IT teams to revisit their approach to DevSecOps.

Experts Comments

September 02, 2020
Sergio Loureiro
Cloud Security Director
Outpost24
This type of attack will be fueled by widespread usage of containers and AWS. Hackers are looking for computing power for crypto mining, and they know DevOps environments tend to be low hanging fruit. Default configuration, or should I say misconfiguration, such as enabled Docker remote connections are great for DevOps collaboration but as this attack shows it is against basic security best practices. Exploiting that vulnerability is easy, can be done remotely, and can even be enhanced by.....Read More
This type of attack will be fueled by widespread usage of containers and AWS. Hackers are looking for computing power for crypto mining, and they know DevOps environments tend to be low hanging fruit. Default configuration, or should I say misconfiguration, such as enabled Docker remote connections are great for DevOps collaboration but as this attack shows it is against basic security best practices. Exploiting that vulnerability is easy, can be done remotely, and can even be enhanced by escaping Docker and compromising the host. The solutions are not rocket science; just apply the CIS Docker benchmark in an automated way to your DevOps environment. Keeping your AWS credentials safe with multi-factor authentication and least privilege policies with the CIS AWS benchmark will help for the first phase of the attack. And getting top vulnerability scanning in place to prevent escaping Docker attacks will raise 3 barriers that most crypto miners will not bother to overcome.  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.