Threats to Containers and Container Technology

Organizations are increasingly using container technology to scale their workloads. This simultaneously makes targeting containers more valuable for threat actors and increases the likelihood of security gaps in cloud environments.

The widespread adoption of container technologies with improper configurations, poor protection and lack of monitoring creates easy targets for cybercriminals.

This report analyzes threats and observed threat actor behavior related to container technology — categorized alongside the MITRE ATT&CK® framework — that occurred in incidents between 2019 and 2022.

Download to learn the following:

  • Potential threats to a container’s life cycle
  • How threat actors most commonly gain access to and exploit container technology
  • The most frequently observed impact tactic pertaining to containers
  • Five steps you can take to protect containers today


  • OS icon
  • deployment icon
  • installation icon

For technical information on installation, policy configuration and more, please visit the CrowdStrike Tech Center.

Visit the Tech Center