Docker: ‘Data 190,000 Hub users may have been stolen from a data breach’.

The data of 190,000 Hub users may have been stolen from a data breach, Docker warns in an email shared on Hacker News. According to the company, there has been “unauthorized access” to a database.

Docker Hub enables users to create, manage, download and distribute all kinds of Docker images. Docker allows developers to roll out an application in a container to run on the underlying operating system.

The company detected unauthorized access to a Hub database on Thursday 25 April, reports Security.nl. That database contained data from 190,000 accounts. According to the company itself, this is less than 5 percent of all users. These are mainly usernames. A number of users also had their passwords washed and GitHub and Bitbucket tokens for Docker autobuilds in the database.

Autobuilds allow the service to automatically create images from source code in a remote repository, and to automatically place them in the users’ repository.

Research

The service says in the e-mail that after detecting the unauthorised access it has taken swift action to “intervene and secure the website”. The company has also decided to withdraw GitHub tokens and access keys from affected users. These users need to reconnect to their repositories.

Users are also asked to make sure they have not seen any suspicious activity within their repository. Users are also advised to change their password. Docker himself says he wants to improve their overall security processes and put their policies under the spotlight. It has also set up additional monitoring tools in its systems.

The investigation into unauthorized access is still ongoing, according to Docker. The company says it will share more information with users as soon as more information becomes available.