How small can you make a Docker image? These tiny (and even super-tiny) base images pack a surprising amount of punch for their size. Docker images can get pretty bulky if you’re not careful.

A new attack campaign deploys malicious container images ... Docker Engine API endpoints. The malicious image contains a distributed denial-of-service (DDoS) botnet implant written in Python.

Scrubbing tokens from source code is not enough, as shown by the publishing of a Python Software Foundation access token with administrator privileges to a container image on Docker Hub.