Container Security: Attack Trends and Defense

Logo
Presented by

Ell Marquez, Linux and Security Advocate & Adir Shemesh, Software Developer

About this talk

84% of companies surveyed by the Cloud Native Computing Foundation are running containers in production. Safe to say, securing containers has become an important part of cloud security planning. Concerns around container security are not unfounded. In 2019, Docker reported their repositories had been breached affecting 190,000 users. Though this might not seem like a lot, consider that many of these users had access to their employers' production environments, allowing the compromise to expand and result in more data being infiltrated. Researchers at Intezer recently discovered a previously undetected malware which they named Doki. Doki is a non-malicious container image which includes the commonly used Linux command curl. This command allows attackers to bypass traditional scanning and run malicious code after the container has been created. With companies creating new containers every few hours, minutes, and even seconds, it is nearly impossible to monitor what is running on these containers without the proper tools. Join Ell Marquez and Adir Shemesh to learn about the latest container attack trends and how Intezer Protect can secure your entire cloud-native stack.

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (22)
Subscribers (2362)
Revealing the "genetic" origins of software, Intezer introduces a new way to detect and respond to cyber threats. Intezer offers enterprises an advanced solution to detect modern cyber attacks, with deep context for effective incident response. For more information, visit www.intezer.com or follow the company on Twitter at @IntezerLabs.