News by FinTech Collective

Subscribe

Contributors

Abdul Abdirahman
Adi Levanon

Director of Investments @ FinTech Collective
Anna Kirk
Brooks Gibbins
Carlos Alonso Torras
Cristobal de Atucha
Daniel McAuley

MBA Candidate, The Wharton School
Doug Binder

Software Engineer at Fintech Collective
Emma Ford
Faisal Kawar

Principal
Gareth Jones

Co-Founder, FinTech Collective
Gustaf Ericson
Jack Storrs
Jacob Katz

Summer Associate
Jenn Kalidoss
Kate Wang
Keenan Burgess

Operations Associate
Louden Richason
Matthew Levinson
Nico Carrara
Parker Jay-Pachirat
Paul Barskiy
Ricardo Rosales
Ryan Todd
Samantha Wulfson
Sarah Wolter
Sean Lippel
Travis Skelly
William Ziesing
Zein Dayekh

News by FinTech Collective Archive

Official images in Docker hub contain security vulernerabilites

Doug Binder

May 29, 2015

https://www.passle.net/Content/Images/passle_logo-186px.png Passle https://passle.net

Doug Binder

Docker has quickly become the go to resource for container images, but some of their official images may have serious security vulnerabilities. If you are using the service double check you're not using the bad eggs.

{

Docker Hub is a central repository for Docker developers to pull and push container images. We performed a detailed study on Docker Hub images to understand how vulnerable they are to security threats. Surprisingly, we found that more than 30% of official repositories contain images that are highly susceptible to a variety of security attacks (e.g., Shellshock, Heartbleed, Poodle, etc.). For general images – images pushed by docker users, but not explicitly verified by any authority – this number jumps up to ~40% with a sampling error bound of 3%.

http://www.banyanops.com/blog/analyzing-docker-hub/

More posts by Doug Binder

Inside Uber's Engineering Struggles

Inside Uber's Engineering Struggles

Doug Binder

Introducing Relay

Introducing Relay

Doug Binder

Apple, Google and the State of the Enterprise Beacon Market

Apple, Google and the State of the Enterprise Beacon Market

Doug Binder

Stagefright: Google's Android megabug

Stagefright: Google's Android megabug

Doug Binder

Search after the search box

Search after the search box

Doug Binder

Recent posts from News by FinTech Collective

Financial platform for schools Mattilda arrives in Colombia to combat school dropout

Financial platform for schools Mattilda arrives in Colombia to combat school dropout

Cristobal de Atucha

Flutterwave and Acquired.com collaborate for seamless outward card payments on send app for EU and UK users

Flutterwave and Acquired.com collaborate for seamless outward card payments on send app for EU and UK users

Kate Wang

Tearsheet podcast: MoneyLion’s maniacal mission of rewiring finance with Dee Choubey

Tearsheet podcast: MoneyLion’s maniacal mission of rewiring finance with Dee Choubey

Kate Wang

Canada announces date for real-time payments system launch

Canada announces date for real-time payments system launch

Sarah Wolter

Brazil’s Pix to reach 40% of online shopping by 2026, study shows

Brazil’s Pix to reach 40% of online shopping by 2026, study shows

Cristobal de Atucha

repost cancel

As a free user, you can like posts.

To repost this post to your own Passle blog, you will need to upgrade your account.

For plans and pricing, please contact our sales team at sales@passle.net

Sorry, you don't have permission to repost or create posts.

cancel