"Millions of Malicious 'Imageless' Containers Planted on Docker Hub Over 5 Years"

JFrog researchers found multiple campaigns planting millions of malicious "imageless" containers on Docker Hub over the past five years, highlighting how open source registries can enable supply chain attacks. More than four million Docker Hub repositories are imageless and contain only the repository documentation, according to JFrog security researcher Andrey Polkovnichenko. The documentation is unrelated to the container. Instead, it is a page that directs users to phishing or malware sites. At least 3.2 million of the 4.79 million imageless Docker Hub repositories found were used as landing pages to redirect unsuspecting users to fraudulent sites in three campaigns. This article continues to discuss the discovery of malicious campaigns targeting Docker Hub.

THN reports "Millions of Malicious 'Imageless' Containers Planted on Docker Hub Over 5 Years"

Submitted by grigby1

Submitted by Gregory Rigby on