Security news aggregator

Latest coverage for Containers

Stay secure with the latest insights on container security, trends, and best practices in information security for containerized applications.

1 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Containers package software and its dependencies into isolated units that run consistently across environments. They share the host operating system kernel but maintain separation through namespaces and control groups, enabling efficient resource use and rapid deployment. This isolation differs from full virtual machines by being more lightweight and portable.

Security concerns focus on container escape, where vulnerabilities allow attackers to break isolation and access the host system or other containers. Risks also arise from untrusted or outdated container images that may contain malware or vulnerabilities. Defenses include image scanning, minimal base images, runtime security monitoring, and strict access controls on container orchestration platforms to limit privilege escalation and lateral movement within containerized environments.

Showing 1 most recent headlines Filtered view

Dirty Frag is a newly disclosed Linux local privilege escalation vulnerability affecting kernel networking and memory-fragment handling components including esp4, esp6, and rxrpc. The vulnerability enables reliable escalation from an unprivileged user to root and may be leveraged after initial compromise through SSH access, web shells, containers, or low-privileged accounts. Microsoft Defender is actively monitoring limited in-the-wild activity and provides detection coverage for exploitation attempts. The post Active attack: Dirty Frag Linux vulnerability expands post-compromise risk appeared first on Microsoft Security Blog.