A security research team discovered millions of malicious 'imageless' containers on Docker Hub, with approximately 25% of repositories lacking useful functionality and serving as spam, pirated content, and malware vehicles. Three main malware campaigns were identified, exploiting Docker Hub's community features to lead users to phishing and malware-hosting websites. The campaigns included pirated content, eBook phishing, and website campaigns, using tactics like URL shorteners and open redirect bugs
The payloads, mainly Trojans, communicated with C2 servers to download more malware, raising concerns about user protection and the need for enhanced moderation and community involvement to detect and mitigate malicious activities. ```https://www.infosecurity-magazine.com/news/malicious-containers-found-docker/