Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Docker expands Hardened Images catalog access with near-zero-CVE subscriptions

Security Tool/Service
First reported
Last updated
Happening score
H score 10
1 unique sources, 2 articles

Summary

Hide ▲

Docker expanded Hardened Images access with a 30-day free trial and subscription use for all users, making secure container images more accessible to startups and SMBs. The catalog is positioned as near-zero CVEs by design, and it includes SBOM and VEX support to help teams focus on relevant risk. Docker also says the images are rootless by default and covered by a seven-day patch SLA, which raises the operational security bar for container builds. The broader rollout could help shift default image hygiene across the container ecosystem.

Related Happenings

Linux kernel Dirty Frag patch release (CVE-2026-43284, CVE-2026-43500)

Security Patch Release
First: 11.05.2026 17:30 Last: 11.05.2026 17:30 Sources 1

About this happening: **Major Linux distributions** are rolling out fixes for **Dirty Frag**, the **Linux kernel** patch release that covers **CVE-2026-43284** and **CVE-2026-43500**. The update matter...

Open Happening

Quasar Linux (QLNX) Linux RAT targeting developer credentials

Malware Activity
First: 06.05.2026 12:48 Last: 06.05.2026 12:48 Sources 1

About this happening: The **Quasar Linux (QLNX)** RAT has been identified as a **Linux backdoor** that can steal **developer credentials** and compromise software-supply-chain publishing pipelines. It...

Open Happening

Checkmarx/kics Docker Hub repository hit by network compromise

Incident
First: 22.04.2026 20:55 Last: 22.04.2026 20:55 Sources 1

About this happening: **Checkmarx's checkmarx/kics Docker Hub repository** suffered a **supply-chain compromise** that could expose **secrets** from infrastructure-as-code scans. **Unknown threat actor...

Open Happening

TeamPCP infostealer in compromised Trivy Docker Hub images

Malware Activity
First: 23.03.2026 17:05 Last: 23.03.2026 17:05 Sources 1

About this happening: **TeamPCP infostealer** was found in additional **compromised Trivy Docker images**, extending the malware distribution path through **Docker Hub**. The newly identified tags **0....

Open Happening

TeamPCP cloud-native exploitation campaign

Campaign
First: 09.02.2026 10:37 Last: 09.02.2026 10:37 Sources 1

About this happening: **TeamPCP** is a **cloud-native supply-chain campaign** that abuses exposed **Docker APIs**, **Kubernetes clusters**, **Ray dashboards**, **Redis servers**, and **React2Shell (CVE...

Latest development: 23.03.2026 10:31

Researchers uncovered malicious Trivy Docker Hub image tags 0.69.4, 0.69.5, and 0.69.6 tied to TeamPCP; 0.69.5 and 0.69.6 were pushed on March 22 without corresponding GitHub releases or tags. The same reporting says TeamPCP used a compromised service account token to deface all 44 internal repositories in Aqua Security's aquasec-com GitHub organization by renaming them with the tpcp-docs- prefix and exposing them publicly.

Open Happening

Timeline

  1. 08.10.2025 01:09 3 articles · 7mo ago

    Docker expands Hardened Images access

    Initial Disclosure

    Docker announced unlimited access to its Hardened Images catalog for all users, with a subscription and 30-day free trial aimed at startups and SMBs. The catalog is positioned as near-zero CVEs and includes rootless-by-default images, SBOM and VEX support, a seven-day patch SLA for affected components, and compatibility with Alpine and Debian Linux systems.

    Show sources
    Open in new tab