Prevasio, a cybersecurity startup, has announced that it has completed the scanning of 4 million container images at Docker Hub. Nearly 51% of the images have critical vulnerabilities, and nearly 6,500 of them can be considered malicious.
They are probably referring to the thousands of images which havent been updated in months or years. Which is why you should stick to official images, and those linked to known developers.
or they’re just referring to the thousands of images installed by people who have no clue what they are doing… 51% of docker “admins”?