{"version":"1.0","type":"rich","provider_name":"Acast","provider_url":"https://acast.com","height":250,"width":700,"html":"","title":"Docker Hub CVE Wake-Up Call: Malware from 2024 Still Lurking in 2025 Images!","thumbnail_width":200,"thumbnail_height":200,"thumbnail_url":"https://open-images.acast.com/shows/66cf6d924960e4eb18d4aa8d/1755269256758-0527a42f-ec9f-4d98-bd34-467fb08c08a3.jpeg?height=200","description":"

We’re kicking off Season 2 of IT SPARC Cast - CVE of the Week with a critical vulnerability warning that should make every DevOps and IT leader take notice. This episode dives into the shocking discovery that 35 Docker Hub images still contain malware linked to the 2024 XZ Utils supply chain attack—highlighting massive blind spots in container security.


John and Lou explore how this outdated exploit has resurfaced in current Docker images, why current scanning tools failed to catch it, and what security measures enterprise IT teams must implement to stay protected. From Zero Trust practices to software attestation chains, this episode outlines what’s broken—and what you can do about it.



🔐 SEO Keywords:


Docker vulnerability, CVE of the week, container security, XZ Utils exploit, Docker Hub malware, supply chain attack, open source security, DevSecOps best practices, 2024 CVE, secure coding, binary scanning, Docker CVE patch, enterprise IT podcast



🔗 Social Links:


IT SPARC Cast

@ITSPARCCast on X

https://www.linkedin.com/company/sparc-sales/ on LinkedIn


John Barger

@john_Video on X

https://www.linkedin.com/in/johnbarger/ on LinkedIn


Lou Schmidt

@loudoggeek on X

https://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn

","author_name":"John Barger"}