Tag

Docker

All articles tagged with #docker

security1 month ago•4 min saved

Checkmarx Supply-Chain Breach: Poisoned KICS Docker Images and Malicious VS Code Extensions

Security researchers warn of a Checkmarx supply-chain breach: attackers overwrote tags in the official checkmarx/kics Docker Hub (notably v2.1.20, alpine; adding v2.1.21) with a compromised KICS binary that exfiltrates data and can encrypt and send scan reports to an external endpoint; separately, Checkmarx VS Code extensions (cx-dev-assist and ast-results, versions 1.17.0/1.19.0) load a remote mcpAddon.js via a hard-coded GitHub URL, enabling credential theft and propagation as attackers injected a backdated commit to introduce a large payload; the attack uses stolen tokens to create public repos, GitHub Actions workflows, and to exfiltrate GitHub, AWS/Azure/GCP credentials, npm configs, SSH keys, and environment variables to public repos and to an endpoint controlled by the attackers; the operation also spreads through the npm ecosystem by republishing ~250 compromised packages; 51 repos reference Checkmarx Configuration Storage in READMEs; TeamPCP is suspected; mitigation includes removing affected artifacts, rotating credentials, auditing GitHub workflows, reviewing npm packages, and monitoring access logs.

via The Hacker News|

#credential-theft #docker #github-actions

technology4 months ago•2 min saved

LACT 0.8.4 Elevates Linux GPU Tuning UI with Expanded AMD Support and Docker Packaging

LACT 0.8.4 sharpens the Linux GPU overclocking UI, expanding AMD Radeon support, adding more power sensors and faster AMD stats, and introducing Docker packaging, while also broadening compatibility to Intel GPUs and some NVIDIA features.

via Phoronix|

#amd #docker #gpu-overclocking

technology6 months ago•2 min saved

Critical runc Flaws Threaten Docker and Kubernetes Container Security

Three critical vulnerabilities in the runC container runtime used by Docker and Kubernetes could allow attackers to escape containers and gain root access to host systems. While no active exploits have been reported, mitigation strategies include enabling user namespaces and using rootless containers. Fixes are available in recent runC versions.

via BleepingComputer|

#container-security #cybersecurity #docker

technology7 months ago•68 min saved

Top Tips and Tools for Easy Self-Hosting Success

The article advocates for self-hosting personal and small business services, emphasizing that most projects don't require cloud scale and can be managed on a well-secured VPS with proper setup, backups, and security measures. It discusses the trade-offs between self-hosting and managed services, highlighting security concerns, the importance of backups, and the practicality of using tools like Docker, Kubernetes, and reverse proxies. The author also touches on the challenges of email hosting, security risks, and the value of control and portability in self-hosted environments.

via Hacker News|

#cloudflare #docker #security

security9 months ago•2 min saved

Docker Desktop patch addresses critical security flaws enabling host compromise

Docker has released version 4.44.3 to fix a critical vulnerability (CVE-2025-9074) in Docker Desktop for Windows and macOS that could allow attackers to escape containers and gain full host access, with a CVSS score of 9.3. The flaw stems from unauthenticated access to the Docker Engine API, enabling malicious containers to compromise the host system, especially on Windows, while Linux remains unaffected.

via The Hacker News|

#container-escape #cve-2025-9074 #docker

technology2 years ago•4 min saved

"Efficient Penetration Testing: Harnessing Kali Linux in a Docker Container"

Businesses can run penetration testing using Kali Linux as a Docker container, eliminating the need for a full operating system installation. By deploying Kali Linux as a Docker container, security staff or administrators can easily access a headless container and utilize the wide range of pen-testing tools available. The process involves installing Docker, pulling the Kali Linux image, deploying the container, and installing the necessary pen-testing tools. The resulting container can be saved and reused for future testing, making it a flexible and efficient method for conducting penetration testing.

via The New Stack|

#containerization #docker #kali-linux

technology2 years ago•3 min saved

Efficient Data Sharing in Docker Containers

This article explains how to share data between two Docker containers using volumes. It provides step-by-step instructions for installing Docker on Ubuntu Server and demonstrates the basic sharing of data between two containers. It also shows how to share a data volume between two NGINX containers, allowing them to serve different content. The article highlights the versatility and potential applications of data sharing in Docker containers.

via The New Stack|

#containers #data-sharing #docker

technology2 years ago•4 min saved

Rapidly Deploy Containers with DockSTARTer.

DockSTARTer is a terminal application that simplifies the deployment of containerized applications for those new to Docker. It guides users through the deployment process via an easy-to-navigate menu system, allowing for customization of configurations. The app is not exhaustive in its list of available applications, but it is a great tool for learning the ins and outs of Docker deployment. The installation process for DockSTARTer is straightforward and requires the installation of Docker and Docker Compose.

via The New Stack|

#containerization #deployment #docker

technology3 years ago•4 min saved

"Set up a Self-Hosted Bitwarden Server using Docker"

Bitwarden, a popular password manager, can be deployed on-premises with Docker for added security. The process is easy and requires a running instance of an operating system that supports Docker, a user with sudo privileges, and an SMTP server. The installation process involves running a script and configuring environment variables for the SMTP server. It is crucial to use an SSL certificate for Bitwarden to function properly. Once installed, users can create accounts and enjoy added privacy for their sensitive data.

via The New Stack|

#bitwarden #docker #on-premises