Sysdig Usage Report Finds Shifting Container Security Left is Not Enough

13.1.2021 15:00:00 EET | Business Wire | Press release

Sysdig, Inc., the secure DevOps leader, today announced findings from its Sysdig 2021 Container Security and Usage Report. While usage reveals organizations are shifting left by scanning images during the build phase, DevOps teams are still leaving their environments open to attack. The report also looks at trends, finding a 310 percent growth in container density since 2017.

The fourth annual report reveals how global Sysdig customers of all sizes and across industries are using and securing container environments. This real-world, real-time data provides insight into usage of the nearly one billion containers Sysdig customers run yearly, including security risks, container utilization, and services used. Read the Sysdig 2021 Container Security and Usage blog.

Among its findings, the report states that while 74 percent of customers are scanning before deployment, still more than half (58 percent) of containers are running as root. There are some containers that should run as root—security and system daemons for example—but this is a small portion of total containers. These risky configurations leave easy access to potentially compromise the system and access sensitive data. This finding stresses the need for security throughout the lifecycle of a container image—fixing vulnerabilities is not enough.

Highlights From the Report

Container density grows 170% since 2018

Over the past three years, the median number of containers-per-host more than doubled from 15 in 2018 to 41 today, indicating a growth in efficiency and a shift in cost savings as containers mature. This reveals a continued focus on optimization.

Prometheus continues to grow, 35% YoY

Open source adoption is broader than just Kubernetes as organizations are shifting toward Prometheus as the standard approach to monitoring container environments. The use of Prometheus metrics among Sysdig customers grew 35 percent year-over-year.

Docker down, containerd and CRI-O up 4X

In 2017, Docker represented 99 percent of containers in use at that time. Today, that number has fallen to 50 percent, down from 79 percent in October 2019. While Docker revolutionized containers, organizations are rapidly switching to newer runtimes like containerd and CRI-O.

21% of containers live less than 10 seconds

The ephemeral nature of containers is a unique efficiency advantage, yet it can be a challenge in managing issues around security, health, and performance. The short life of containers reaffirms the need for container-specific tools for security and monitoring. For example, organizations need metric collection with intervals of less than 10 seconds and a detailed record of what occurred when the container was alive.

“With the high-profile breaches we are seeing and the accelerated adoption of containers in production, the container security risk is now on the radar of CISOs. Across millions of containers that we have studied, it’s clear that organizations are shifting security left, but they are neglecting critical best practices,” said Suresh Vasudevan, chief executive officer of Sysdig. “Container security has to span the entire software development lifecycle. Until organizations fix risky configurations, protect their runtime environments, and invest in container forensics, we will see an increase in container security breaches. I expect we will see several high-impact breaches before we release our next report.”

Other Interesting Findings

Falco, the open source runtime project for cloud-native environments created by Sysdig and donated to the CNCF, has seen a 300 percent increase in Docker Hub downloads over the last year.
The use of golang increased to 66 percent, a 470 percent jump since last year.
63 percent of container images are replaced within two weeks or less, signifying a more frequent code deployment rate.

Learn More About this Report

Download the full Sysdig 2021 Container Security and Usage Report.
Download the infographic.
Read the usage report blog.
Join the webinar Real-World Insights: Dig into Sysdig’s Container Security and Usage Report on Jan. 21 at 10am PST to walk through the report with the author.

About Sysdig

Sysdig is driving the secure DevOps movement, empowering organizations to confidently secure containers, Kubernetes, and cloud services. With the Sysdig Secure DevOps Platform, cloud teams secure the build pipeline, detect and respond to runtime threats, continuously validate compliance, and monitor and troubleshoot cloud infrastructure and services. Sysdig is a SaaS platform, built on an open source stack that includes Falco and sysdig OSS, the open standards for runtime threat detection and response. Hundreds of companies rely on Sysdig for container and Kubernetes security and visibility. Learn more at www.sysdig.com.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20210113005319/en/

Contact information

Amanda McKinney Smith
(703) 473-4051
amanda.smith@sysdig.com

About Business Wire

Business Wire

http://www.businesswire.com

For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

NayaPay Launches Global QR Payments for Pakistanis via Alipay+10.12.2025 06:00:00 EET | Press release

NayaPay, one of Pakistan’s fastest growing fintech platforms, has launched global QR payments in collaboration with Alipay+, Ant International’s global wallet gateway. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251209591389/en/ The partnership enables millions of NayaPay users to scan-and-pay at Alipay+ merchants initially across more than 50 countries, connecting Pakistani consumers to an extensive global ecosystem spanning retail, dining, transport, healthcare, entertainment and more. With this innovative feature, paying abroad just got faster and more affordable. With NayaPay, Pakistanis can now scan and pay securely worldwide with lower costs, less friction, and a seamless checkout experience wherever they go. Alipay+ connects 40 international mobile payment partners to more than 150 million merchants globally. The launch reinforces NayaPay’s commitment to delivering world-class payment experiences to Pakistani consu

Biocytogen Completes STAR Market IPO, Becoming the First “H+A” Global Drug Innovator10.12.2025 04:50:00 EET | Press release

Biocytogen (Beijing) Pharmaceutical Technology Co., Ltd. (“Biocytogen,” SSE: 688796; HKEX: 02315), a global biotechnology company advancing innovative drug discovery, today announced its successful listing on the Shanghai Stock Exchange STAR Market. This follows the Company’s listing on the Hong Kong Stock Exchange in September 2022 and marks a significant milestone in establishing Biocytogen as the first “H+A” dual-listed global drug innovator, reinforcing its mission to become the global headstream of new drugs. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251209977992/en/ The Company’s IPO price was set at 26.68 RMB per share, with an opening price of 58 RMB, representing a 117% increase over the offering price. Based on the opening price, Biocytogen’s market capitalization exceeds 25.9 billion RMB. Biocytogen’s proprietary RenMice® platforms (RenMab™, RenLite®, RenNano®, RenTCR-mimic™) enable the discovery of fully hum

Argo Infrastructure Partners Increases Ownership and Capital Commitment to TierPoint10.12.2025 00:00:00 EET | Press release

Argo Infrastructure Partners, LP (“Argo”), an established mid-market asset manager of essential infrastructure assets in North America, today announced it has acquired on behalf of its managed funds the equity interests of the majority of minority shareholders in TierPoint. The transaction reflects Argo’s continued conviction in TierPoint’s strategy and growth potential during a period of accelerating demand for TierPoint’s enterprise-class data center services. Since Argo’s initial investment in 2020, $3 billion of capital has been raised to fund growth and reduce TierPoint’s cost of capital by terming out debt facilities. The investment capital has advanced TierPoint’s market position as a data center services provider to enterprises, government organizations, hyperscalers and other consumers of state-of-the-art digital infrastructure. With these investments, Argo has supported the national expansion of TierPoint’s data center platform, and its efforts to meet and exceed customers’ r

Venture Global Announces Closing of $3,000,000,000 Senior Secured Notes by Venture Global Plaquemines LNG, LLC9.12.2025 23:30:00 EET | Press release

Venture Global, Inc. (“Venture Global”, NYSE: VG) announced today that its subsidiary, Venture Global Plaquemines LNG, LLC (“VGPL”) has closed an offering of $3,000,000,000 aggregate principal amount of senior secured notes, which has been issued in two series: (i) a series of 6.125% senior secured notes due 2030 in an aggregate principal amount of $1,750,000,000 (the “2030 Notes”) and (ii) a series of 6.500% senior secured notes due 2034 in an aggregate principal amount of $1,250,000,000 (the “2034 Notes” and, together with the 2030 Notes, the “Notes”). The 2030 Notes will mature on December 15, 2030, and the 2034 Notes will mature on June 15, 2034. Venture Global had previously announced the issuance of $2,500,000,000 of senior secured notes by VGPL on April 21, 2025, and $4,000,000,000 of senior secured notes by VGPL on July 3, 2025 (collectively, the “Existing Notes”), bringing the combined aggregate amount of senior secured notes issued by VGPL to $9,500,000,000 since the project

Doha Debates Hosts “In The Room: The Negotiators Podcast” Live at Doha Forum9.12.2025 19:09:00 EET | Press release

Qatar Foundation’s Doha Debates spotlighted the practice of high-stakes negotiation with a special live episode of its award-winning podcast with Foreign Policy, The Negotiators, at Doha Forum, following the launch of the podcast series’ fifth season on December 1. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251209171106/en/ Doha Debates spotlighted the practice of high-stakes negotiation with a special live episode of its award-winning podcast with Foreign Policy, The Negotiators, at Doha Forum, following the launch of the podcast series’ fifth season on December 1. (Photo: AETOSWire) Held in collaboration with The Negotiators’ special partner for this season, the International Peace Institute (IPI), and Doha Debates’ longstanding production partner, Foreign Policy, the episode featured a compelling conversation between Prince Zeid bin Ra’ad bin Zeid Al Hussein, president and chief executive officer of the International

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom