An overwhelming majority (87%) of container images were found to have advanced or critical vulnerabilities, and 90% of all granted permissions were associated with the container and unused.
Claims come from new report Shared by Sysdig, an integrated cloud and container security company Information security Before public.
The new data also suggests that only 15% of all critical and advanced vulnerabilities with available fixes are in packages that are loaded at runtime. By filtering the vulnerable packages in use, companies can focus their efforts on the smaller number of fixable vulnerabilities that represent real risk.
Additionally, research documents suggest that 59% of containers have no defined CPU limit, and 69% of all requested CPU resources typically remain unused.
finally, Sisdig revealed that 72% of all containers are up and running in less than 5 minutes on average. This is a 28% decrease compared to last year.
“Looking back at last year’s report, container adoption continues to mature, as evidenced by the shortening of container lifespans,” said Michael Isbitski, director of cybersecurity strategy at Sysdig. I’m here.
“However, misconfigurations and vulnerabilities continue to plague cloud environments, and supply chains amplify the exposure of security issues.”
In fact, according to executives, this hinders organizations from collecting troubleshooting information and increases the need for security solutions to retain information despite the ephemeral nature of the cloud.
“Permission management for both users and services is another area I would like people to be stricter on,” added Isbitski.
The report analyzed over 7 million containers run daily by Sysdig customers. The company said it also pulled from public data sources such as GitHub, Docker Hub, and the Cloud Native Computing Foundation (CNCF).
On the quality side, the anonymized data comes from container deployments across a wide range of industries and medium to large enterprise organizations. Customer data was analyzed in the Americas, Australia, EU, UK, and Japan.
“This year’s report shows significant growth and also outlines best practices we expect teams to adopt by the 2024 report. , prioritizing remediation of truly impactful vulnerabilities, etc.,” concludes Isbitski.
Sysdig’s report comes months after CrowdStrike’s security researchers discovered it. cryptojacking campaign It targets vulnerable Docker and Kubernetes infrastructure.
