Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


    Cloudron Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    Solved Docker Hub hacked, how is Cloudron affected?

    Discuss
    2
    3
    168
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • yusf
      yusf last edited by

      During a brief period of unauthorized access to a Docker Hub database, sensitive data from approximately 190,000 accounts may have been exposed (less than 5% of Hub users). Data includes usernames and hashed passwords for a small percentage of these users, as well as Github and Bitbucket tokens for Docker autobuilds.

      Can you adress this?

      1 Reply Last reply Reply Quote 0
      • nebulon
        nebulon Staff last edited by

        Our DockerHub account is not linked to any Github or Bitbucket account, so there is no issue on that front.

        For the other case where someone might have gotten access to our DockerHub account, our app manifests specify the docker image id, instead of repo name and tag name.

        1 Reply Last reply Reply Quote 1
        • yusf
          yusf last edited by

          That's good news. I suspected nothing was compromised with Cloudron but it's good to have it stated. 👍

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Powered by NodeBB