#containersecurity

OpsMatters

@opsmatters.com

12 hours ago

Mend Mend identifies every open source component in your software, including dependencies. It then secures you from vulnerabilities and enforces license policies throughout the software development lifecycle.

The latest update for #Mendit includes "#ContainerSecurity Without Context Is Just More Noise" and "Poisoned Axios: npm Account Takeover, 50 Million Downloads, and a RAT That Vanishes After Install".

#CyberSecurity #DevOps #OpenSource #Compliance https://opsmtrs.com/3zEYo7d

@techblog98.bsky.social

12 hours ago

SPARK Matrix?: Cloud Workload Protection Platform, Q4 2025 QKS Group's Cloud Workload Protection Platform market research includes a comprehensive analysis of ...

Why Cloud Workload Protection Platforms Are Essential for Modern Cloud Security

qksgroup.com/market-resea...

#CWPP #CloudWorkloadProtection #CloudSecurity #CyberSecurity #CloudNativeSecurity #ContainerSecurity #KubernetesSecurity #CloudSecuritySolutions #WorkloadSecurity #ThreatDetection

Cybersecurity News Everyday

@hendryadrian.bsky.social

18 hours ago

Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access A high-severity flaw in Docker Engine (CVE-2026-34040) allows attackers to bypass authorization plugins by sending a specially crafted, padded HTTP request that causes the daemon to forward requests without the body. The vulnerability — an incomplete fix for CVE-2024-41110 — can enable creation of privileged containers with host filesystem access and...

A critical flaw in Docker Engine (CVE-2026-34040) allows attackers to bypass AuthZ plugins by sending padded HTTP requests, enabling privileged container access to the host filesystem. Fixed in v29.3.1. #DockerVuln #ContainerSecurity #CVE2026

Anchore

@anchore.com

5 days ago

MCP is having a moment. @josh.bressers.name wanted to know: what are we actually shipping?

9,000 vulns
263 critical findings
36K+ NPM packages
Outdated base images

Not fear-mongering—just data-driven real... anchore.com/blog/analyzing-the-top-m...

#MCP #ContainerSecurity

Aleksei Aleinikov

@aleksei-aleinikov.bsky.social

5 days ago

Docker Hardening in 2026: What I Always Change Before Production If a container runs as root, has write access, and keeps broad privileges, the attacker’s job is already easier.

Docker hardening starts with less privilege.
No root, no extra caps, read-only FS, tighter limits.

medium.datadriveninvestor.com/docker-harde...

#Docker #DevSecOps #ContainerSecurity

Erika Heidi

@erikaheidi.bsky.social

1 week ago

What happened to Trivy? The latest software supply chain incident #containersecurity #educational YouTube video by Chainguard

What happened to Trivy? In this short video, I shared a high-level overview of the most recent software supply incident that affected the open source vulnerability scanner Trivy.

#infosec #containersecurity

youtube.com/shorts/0W62U...

Mohammad-Ali A'râbi

@handle.invalid

1 week ago

10 Docker Commandos: Docker Commands to Hunt the Predator - JAVAPRO International Whose day is it on Tuesday? I mean, Wednesday is Odin’s day, Thursday is Thor’s day, and Friday is Frigg’s day, or…

My JavaPro article on "10 essential Docker commands to hunt the predator" is live!

We cover:
📜 SBOMs & Attestations
🛡️ Hardened Images (DHI)
🚫 VEX Exemptions
🕵️‍♂️ Zero-Day Defenses

Read the full Asgard mission here 👇
javapro.io/2026/03/1...

#Docker #DevSecOps #Java #ContainerSecurity

Breach And Build

@breachandbuild.bsky.social

1 week ago

Breach & Build — cybersecurity news

🔴 CVE-2026-33897 | CRITICAL (CVSS 9.9) Incus users, beware! A flaw allows root access to host servers. Immediate action is REQUIRED. Read our blog for full details NOW!

#CVE #BreachAndBuild #Incus #RootAccess #ContainerSecurity

breachandbuild.com/cve-2026-33897-cve-2026-...

Offensive Sequence

@offseq.bsky.social

1 week ago

CVE-2026-33897: CWE-1336: Improper Neutralization of Special Elements Used in a Incus is a system container and virtual machine manager that supports pongo2 templates to dynamically generate files within container instances. Prior to version 6.23.0, Incus improperly implemented pongo2's chroot isolation feature, which

CRITICAL: lxc incus (<6.23.0) has a template engine flaw (CVE-2026-33897) enabling container escape & root host access. Upgrade now and review access policies! radar.offseq.com/threat/cve-2026-33897-cw... #OffSeq #ContainerSecurity #Linux

Offensive Sequence

@offseq.bsky.social

1 week ago

CVE-2026-33945: CWE-22: Improper Limitation of a Pathname to a Restricted Direct Incus is a system container and virtual machine manager that allows containers to provide credentials to systemd within the guest environment via a shared directory. Prior to version 6.23.0, Incus improperly limits pathnames in configuratio

CRITICAL: lxc incus (<6.23.0) path traversal (CVE-2026-33945) lets attackers write files as root, risking host takeover. Patch to 6.23.0+ now! radar.offseq.com/threat/cve-2026-33945-cw... #OffSeq #CVE202633945 #ContainerSecurity

Minimus

@minimus.io

2 weeks ago

We actually can be in two places at once…

Can you guess which is our RSAC booth and which is our KubeCon booth?

If you’re at either event, come find us:
📍 RSAC: Booth # S-1061
📍 KubeCon: Booth # 940 + 🎯 Space # 340

#KubeConEU #RSAC #ContainerSecurity #Cybersecurity

Minimus

@minimus.io

2 weeks ago

If you maintain an open source project, we want to support you. We’re excited to launch our Open Source Program, providing access to our secure, minimal images free of charge to eligible projects.

Apply or get more information here: buff.ly/dbV6OQm

#OpenSource #ContainerSecurity @kat.lol

Cybersecurity News Everyday

@hendryadrian.bsky.social

2 weeks ago

Threat Research | Weekly Recap [22 Mar 2026] Cybersecurity Threat Research 'Weekly' Recap: this overview surveys vulnerabilities, supply-chain and developer-tooling abuse, phishing and malware campaigns across Langflow (CVE-2026-33017), CanisterWorm, CursorJack, SnappyClient, Vidar Stealer, AsyncRAT, GhostMail, Boggy Serpens, DieNet and Konni, with notable operational exposures such as Myclaw360 TLS key and Larva26002. Cybersecurity Threat Research 'Weekly' Recap: it also highlights evolving trends in AI-assisted threats, container security with Defend for Containers (D4C) guidance and TeamPCP container attack scenarios, plus CI/CD risk from Trivy action hijacking and related supply-chain abuses. #Langflow #CVE-2026-33017 #CanisterWorm #CursorJack #SnappyClient #VidarStealer #AsyncRAT #GhostMail #BoggySerpens #DieNet #Konni #Myclaw360 #Larva26002 #DefendForContainers #TeamPCP #TrivyAction #Kubernetes

Weekly recap highlights critical vulnerabilities like Langflow CVE-2026-33017, supply-chain abuses, AI-powered threats, container security challenges with D4C, and CI/CD risks from Trivy hijacking affecting global cyber defense. #SupplyChain #ContainerSecurity

Minimus

@minimus.io

2 weeks ago

Another event, another Mini Cooper giveaway! That's right - we're bringing the Minimus DART Challenge to KubeCon AND RSAC next week, and someone's leaving with a car!

Come see us at RSAC booth S-1061 / KubeCon booth 940 🎯 🚙

#KubeCon #RSAC #Cybersecurity #ContainerSecurity #CloudSecurity

Anchore

@anchore.com

3 weeks ago

Integrating Anchore Security Scanning into Your Azure DevOps Pipeline | Anchore With a few lines of yaml, add security to your Azure DevOps pipeline to keep non-compliant containers from reaching production environments.

We just updated our guide on integrating Anchore into your Azure DevOps pipelines! Learn how to use anchorectl for distributed analysis (local SBOM generation) or centralized analysis via a staging reg... https://anchore.com/blog/anchore-azure-devops/
#DevSecOps #AzureDevOps #ContainerSecurity #SBOM

Arpit Agrawal

@arpitagrawal.in

3 weeks ago

#Kubernetes #K8s #DevOps #CloudNative #CKS #DevSecOps #ContainerSecurity #KubernetesSecurity #CNCF #OpenSource #LinuxFoundation #TechCommunity

roxsross

@roxsross.bsky.social

3 weeks ago

🛡️ NanoClaw y Docker aíslan agentes de IA en sandboxes de MicroVM

¿Te gustan los agentes tipo OpenClaw pero su inseguridad te preocupa? Esta combinación es la solución.

thenewstack.io/nanoclaw-docker-sandboxe...

#MicroVM #AIIsolation #ContainerSecurity #RoxsRoss