Docker Hub, which provides developers a platform for open source container space was struck with a cyber attack this week. According to reports, a cyber criminal gained unauthorized access to roughly 190,000 accounts which contained sensitive data. Due to the vulnerability, hackers were able to steal usernames and passwords to these accounts, as well as tokens from other widely used development platforms like Github and BitBucket.
The container platform is popular amongst developers because it’s ability to quickly deploy or move app containers. Container images can be set as public or private, and the Hub is the place to go to grab, for example, an official image of MongoDB or nginx and as mentioned above, allows the ability to pull from different platforms to create an active environment. And that’s what makes the Docker Hub breach potentially so much more worrying: If tokens have been compromised, it gives attackers many more places to slip in malicious code.
Evolve MGA offers cyber insurance that covers policyholders in the event their cloud data is hacked, lost, or stolen. Get appointed with our cyber insurance specialists for a FREE Quote!