CyberHappenings logo
Home Browse About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Exposed Credentials in Over 10,000 Docker Hub Images

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

More than 10,000 Docker Hub container images were found to expose sensitive data, including live credentials, AI model keys, and authentication tokens. The leaks impact over 100 organizations, including a Fortune 500 company and a major national bank. The exposed secrets pose significant risks, as they often provide full access to cloud environments, Git repositories, CI/CD systems, and other critical infrastructure components. The most frequent secrets found were access tokens for AI models, with 4,000 such keys identified. Many of the leaks originated from 'shadow IT' accounts, which fall outside of stricter corporate monitoring mechanisms. Despite some developers removing leaked secrets, 75% of the exposed keys were not revoked, leaving them vulnerable to exploitation.

Timeline

  1. 10.12.2025 20:22 1 articles · 5h ago

    Over 10,000 Docker Hub Images Leak Sensitive Credentials

    Security researchers at Flare discovered that 10,456 Docker Hub container images exposed sensitive data, including live credentials and AI model keys. The leaks impact over 100 organizations, with 42% of the images exposing at least five sensitive values. Many of the leaks originated from 'shadow IT' accounts, and 75% of the exposed keys were not revoked, leaving them vulnerable to exploitation.

    Show sources
    Open in new tab

Information Snippets