menu
close_24px
April 2024 | Top 3 Docker Pitfalls

Threat Trends
to Watch

Trends April 2024 – Overlay image-2

In April, the Checkmarx Security Research Team analyzed 1.5 milliion results from Checkmarx One and Keeping Infrastucture-as-Code Secure(KICS) and identified three common Docker misconfigurations that threat actors can exploit.  

Email – Divider
Trend 01
58.47%: Inadvertent misconfiguration risks
In Docker environments, misconfigurations such as open network ports, weak access controls, or improper container isolation can inadvertently expose the system to cyber threats.  
Trend 02
23.68%: Elevated Default Privileges
Docker containers often run with elevated default privileges, granting them unnecessary access to system resources. 
Trend 03
17.85%: Exposure of passwords & secrets
Developers inadvertently include sensitive information like passwords, API keys, or cryptographic keys within Docker images or configurations, leaving them vulnerable to unauthorized access or extraction by malicious actors. 

Need comprehensive, prioritized vulnerability intel delivered right into your IDE? Check out Checkmarx One

Subscribe for Monthly Trend Alerts

Industry Recognition

Logos_new-1

 <\/span><\/p>", rawInlineMessage: "Thank you for subscribing. Keep an eye out for the next monthly threat alert<\/span>
\n

 <\/span><\/p>", hsFormKey: "d101e16b958fea5528c315076a7b6ebb", css: '', target: '#hs_form_target_widget_1676198464243', contentType: "landing-page", formsBaseUrl: '/_hcms/forms/', formData: { cssClass: 'hs-form stacked hs-custom-form' } }; options.getExtraMetaDataBeforeSubmit = function() { var metadata = {}; if (hbspt.targetedContentMetadata) { var count = hbspt.targetedContentMetadata.length; var targetedContentData = []; for (var i = 0; i < count; i++) { var tc = hbspt.targetedContentMetadata[i]; if ( tc.length !== 3) { continue; } targetedContentData.push({ definitionId: tc[0], criterionId: tc[1], smartTypeId: tc[2] }); } metadata["targetedContentMetadata"] = JSON.stringify(targetedContentData); } return metadata; }; hbspt.forms.create(options);