SecTor 2025 | How Secure is Your Base Image? A Live Security Test of Popular OSS Containers

Most developers use container base images without fully understanding their security posture. Even widely trusted images like Alpine, Debian, Ubuntu, or Distroless are often assumed to be secure—but in practice, they degrade over time as new CVEs emerge. Minimal images might reduce surface area, but they don’t eliminate risk and relying on static scans at build time is no longer enough.

This talk puts those assumptions to the test—literally.

In a live session, we’ll scan the most commonly used container base images and compare audience expectations against real-time results. Which image contains the most vulnerabilities? Which ones include high or critical CVEs, even with no extra layers and more importantly: how can teams respond to this shifting reality without constant rebuilds and manual updates?

By: John Amaral | CTO and Co-Founder, Root.io

https://blackhat.com/sector/2025/briefings/schedule/?#how-secure-is-your-base-image-a-live-security-test-of-popular-oss-containers-47527Black HatRead More