Later today at THcon, Florent Moriconi, Axel Neergaard, Lucas Georget, Samuel Aubertin and @aurelsec presented what started as an interesting fun student project: modifying a docker client to inject a payload while building a docker container, and then self replicating through CI.
Very interesting. but I have _concerns_ as it creates a *virus*, and is difficult to mitigate.
Maybe publish only when there's a fix? Detection methods?
#malware #ethics #research #thcon #conference
