Security Hole Is Putting Many Containers in the Cloud at Risk

A serious security vulnerability dubbed Doomsday Docker has been discovered. If your business uses containers, here is what you need to know.

A serious security vulnerability dubbed Doomsday Docker is putting containers at risk. Cybercriminals can exploit this hole to attack the system that hosts the container as well as all the other containers running on the host system. Most containers in the cloud are vulnerable.

The security hole lies in a command-line runtime tool called runC. Popular container platforms such as Docker and Kubernetes use this open-source tool to generate and run containers. “As far as container runtimes go, runC is used by just about every container engine out there,” according to one security expert.

To exploit this vulnerability, cybercriminals just need to place a malicious container within a container system. The vulnerability will allow that container to overwrite the host’s runC binary code, letting the hackers gain access to the host system and potentially all the other containers running on it. This is done with minimal interaction by the hackers.

Container platform providers are patching their software to fix the vulnerability. We can check to see if your provider has issued a patch and make sure it is installed.