Docker Under Siege Cybercriminals Compromise Honeypots to Ramp Up Attacks

Attacks against the Docker Engine, the software core of the container architecture utilised by many cloud-native organisations, are increasing. Researchers have identified two cyber operations this week that highlight the growing threat, including one targeted at conducting denial-of-service (DoS) assaults against Russian targets.

The honeypot, a Docker server designed to allow connections over the remote Docker API, was infiltrated, according to researchers at cloud management platform Uptycs. The fraudsters used the attacks to install cryptomining software and create a reverse shell, allowing them to explore the server in real time. Read More…