An intruder briefly had access to 190,000 Docker Hub accounts, Docker says. Docker Hub is a place where developers can store app “containers,” which can be quickly deployed or moved. The breach potentially magnifies risks for enterprises. Docker says that none of the Official Images have been hacked; it has additional security measures in place for our Official Images including GPG signatures on git commits as well as Notary signing to ensure the integrity of each image’s signature. If a developer in your org enabled autobuilds and linked to GitHub via oauth for a personal project, when that oauth token is compromised,.”]
Source: https://www.cuinfosecurity.com/docker-hub-breach-its-numbers-its-reach-a-12425