What’s in the container? Analyzing vulnerabilities, risks and protection with Kaspersky Container Security and the KIRA AI assistant

This Kaspersky report examines security risks in public Docker images and containerized infrastructure, reporting that many popular images contain critical, unpatched vulnerabilities and insecure configurations (hardcoded secrets, passwordless sudo, insecure permissions) that enable local privilege escalation, remote compromise, malware deployment (miners, Mirai/Gafgyt variants), and supply-chain infections; it recommends pinning dependencies, scanning images, verifying downloads, and using runtime secret management.