Watch Your Containers: Doki Infecting Docker Servers in the Cloud

Presented by

Shaul Holtzman, Nicole Fishbein

About this talk

Doki is the latest high profile attack actively infecting misconfigured Docker servers in AWS, Azure, and other cloud platforms. Anyone with publicly open Docker API access is at high risk to be hacked due to the attackers’ continuous internet-wide scanning for vulnerable victims. The malware used in this attack is a fully undetected backdoor. It has managed to stay undetected for over six months despite being uploaded to VirusTotal several months ago. In this webinar, understand how this attack is being conducted and ways to prevent Doki from infecting your containerized environments in the cloud. You will learn: 1. How this attack is using a previously undocumented technique 2. Immediate action items required of container server owners 3. Understand why the industry is adopting Zero Trust Execution to secure cloud workloads

Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (24)
Subscribers (2524)
Revealing the "genetic" origins of software, Intezer introduces a new way to detect and respond to cyber threats. Intezer offers enterprises an advanced solution to detect modern cyber attacks, with deep context for effective incident response. For more information, visit or follow the company on Twitter at @IntezerLabs.