Sysdig Usage Report Finds Shifting Container Security Left is Not Enough

13.1.2021 15:00:00 EET | Business Wire | Press release

Sysdig, Inc., the secure DevOps leader, today announced findings from its Sysdig 2021 Container Security and Usage Report. While usage reveals organizations are shifting left by scanning images during the build phase, DevOps teams are still leaving their environments open to attack. The report also looks at trends, finding a 310 percent growth in container density since 2017.

The fourth annual report reveals how global Sysdig customers of all sizes and across industries are using and securing container environments. This real-world, real-time data provides insight into usage of the nearly one billion containers Sysdig customers run yearly, including security risks, container utilization, and services used. Read the Sysdig 2021 Container Security and Usage blog.

Among its findings, the report states that while 74 percent of customers are scanning before deployment, still more than half (58 percent) of containers are running as root. There are some containers that should run as root—security and system daemons for example—but this is a small portion of total containers. These risky configurations leave easy access to potentially compromise the system and access sensitive data. This finding stresses the need for security throughout the lifecycle of a container image—fixing vulnerabilities is not enough.

Highlights From the Report

Container density grows 170% since 2018

Over the past three years, the median number of containers-per-host more than doubled from 15 in 2018 to 41 today, indicating a growth in efficiency and a shift in cost savings as containers mature. This reveals a continued focus on optimization.

Prometheus continues to grow, 35% YoY

Open source adoption is broader than just Kubernetes as organizations are shifting toward Prometheus as the standard approach to monitoring container environments. The use of Prometheus metrics among Sysdig customers grew 35 percent year-over-year.

Docker down, containerd and CRI-O up 4X

In 2017, Docker represented 99 percent of containers in use at that time. Today, that number has fallen to 50 percent, down from 79 percent in October 2019. While Docker revolutionized containers, organizations are rapidly switching to newer runtimes like containerd and CRI-O.

21% of containers live less than 10 seconds

The ephemeral nature of containers is a unique efficiency advantage, yet it can be a challenge in managing issues around security, health, and performance. The short life of containers reaffirms the need for container-specific tools for security and monitoring. For example, organizations need metric collection with intervals of less than 10 seconds and a detailed record of what occurred when the container was alive.

“With the high-profile breaches we are seeing and the accelerated adoption of containers in production, the container security risk is now on the radar of CISOs. Across millions of containers that we have studied, it’s clear that organizations are shifting security left, but they are neglecting critical best practices,” said Suresh Vasudevan, chief executive officer of Sysdig. “Container security has to span the entire software development lifecycle. Until organizations fix risky configurations, protect their runtime environments, and invest in container forensics, we will see an increase in container security breaches. I expect we will see several high-impact breaches before we release our next report.”

Other Interesting Findings

Falco, the open source runtime project for cloud-native environments created by Sysdig and donated to the CNCF, has seen a 300 percent increase in Docker Hub downloads over the last year.
The use of golang increased to 66 percent, a 470 percent jump since last year.
63 percent of container images are replaced within two weeks or less, signifying a more frequent code deployment rate.

Learn More About this Report

Download the full Sysdig 2021 Container Security and Usage Report.
Download the infographic.
Read the usage report blog.
Join the webinar Real-World Insights: Dig into Sysdig’s Container Security and Usage Report on Jan. 21 at 10am PST to walk through the report with the author.

About Sysdig

Sysdig is driving the secure DevOps movement, empowering organizations to confidently secure containers, Kubernetes, and cloud services. With the Sysdig Secure DevOps Platform, cloud teams secure the build pipeline, detect and respond to runtime threats, continuously validate compliance, and monitor and troubleshoot cloud infrastructure and services. Sysdig is a SaaS platform, built on an open source stack that includes Falco and sysdig OSS, the open standards for runtime threat detection and response. Hundreds of companies rely on Sysdig for container and Kubernetes security and visibility. Learn more at www.sysdig.com.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20210113005319/en/

Contact information

Amanda McKinney Smith
(703) 473-4051
amanda.smith@sysdig.com

About Business Wire

Business Wire

http://www.businesswire.com

For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

C.H. Robinson Launches World's First AI Technology That Continually Assesses, Improves and Operates Global Supply Chains3.6.2026 19:00:00 EEST | Press release

As the global leader in Lean AI supply chains, C.H. Robinson has built the first AI technology designed to both operate a shipper’s global supply chain and also continuously assess and improve its performance. Now serving the company’s 4PL Managed Solutions customers, a new Lean AI Engineer works in concert with the Lean AI Planner introduced last year to create one connected system that uniquely enhances a supply chain as it runs. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260520874794/en/ The Lean AI Engineer can assess an entire supply chain in 25 to 30 minutes and determine improvements before performance is impacted – compared to supply chain assessments that typically take up to four weeks and look backward at what has happened instead of what should happen. While the Lean AI Engineer delivers intel, the Lean AI Planner manages shipments through hundreds of interconnected AI agents and in turn feeds more data back

Leading Global Brain Science Conference OHBM 2028 to Be Held in Yokohama3.6.2026 18:00:00 EEST | Press release

Yokohama has won the bid to host the 2028 Annual Meeting of the Organization for Human Brain Mapping (OHBM 2028), one of the world’s premier international conferences in brain science, further elevating the city’s presence as a global hub for international conventions and academic exchange. The meeting will take place at PACIFICO Yokohama from June 18–22 and will mark only the second time the meeting has been held in Japan. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260603787692/en/ YOKOHAMA JAPAN'S FIRST PORT OF CALL OHBM is a leading international academic society in the fields of brain imaging, neuroscience, and neurological-disease research. Its annual meeting attracts around 3,000 researchers, healthcare professionals, and industry representatives from around the world. OHBM 2028 will be organized in collaboration with the Japan Human Brain Mapping Society (JHBM, President: Yoshikazu Ugawa and Tetsuya Matsuda). The

Almarai Launches the 2026 Cycle of the World’s Largest Award for Food Security Research in Dryland Regions3.6.2026 17:31:00 EEST | Press release

The 2026 cycle of the Almarai Prize, international track of the Almarai Prize for Scientific Creativity, has officially opened, calling on leading research institutions, distinguished scientists, and global experts to nominate pioneering research that advances food security in the world’s driest regions. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260603753914/en/ Almarai Launches the 2026 Cycle of the World’s Largest Award for Food Security Research in Dryland Regions (Photo: AETOSWire) The prize reflects Saudi Arabia’s expanding commitment to scientific innovation and to advancing solutions that tackle food security challenges in the world’s dryland regions. Almarai - a regional leader in food and agriculture - has long invested in scientific progress, sustainable farming, and long‑term food‑system resilience. As one of the world’s largest vertically integrated food companies, Almarai continues to place research and inn

Stabilizing Grids and Cutting Costs in Half: Europe Is Banking on Grid-Relevant Storage Systems3.6.2026 16:50:00 EEST | Press release

The European battery market is scaling up at record speed: According to the latest Solar+ Report from SolarPower Europe, at the end of 2025, the installed storage fleet in the EU had reached a total capacity of 40 gigawatts (GW) and a storage capacity of 77 gigawatt hours (GWh). This is an increase of over 45 percent compared to the previous year. By 2030, the study’s Solar+ scenario forecasts that capacity will quadruple to 171 GW, while storage capacity will increase eightfold to 598 GWh. As growing solar and wind capacities place increasing demands on European grids, storage systems will need to shift electricity over many hours. As a result, the average storage duration will go up from 1.9 to 3.5 hours. This represents a technological leap that underscores the need to establish more grid-relevant storage systems. Taking place in Munich from June 23–25, ees Europe will showcase how the industry is meeting this enormous demand. As Europe’s largest exhibition for batteries and energy

Onimusha: Way of the Sword Set to Release on September 25, 2026!3.6.2026 16:00:00 EEST | Press release

Capcom Co., Ltd. (TOKYO:9697) today announced that Onimusha: Way of the Sword, the latest title in the Onimusha series, is scheduled for release on September 25, 2026. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260603903549/en/ Onimusha: Way of the Sword key art Onimusha: Way of the Sword, which marks the first new title in the series in over 20 years, is a Japanese-inspired dark fantasy game that features Miyamoto Musashi as the protagonist and is set in an Edo-era Kyoto that has been twisted by malevolent clouds of Malice. Capcom is developing the title with the aim of appealing to a wide range of players through its exhilarating sword-based action and highly-unique characters. Ahead of launch, the company released a playable demo today*, June 3, 2026, titled Onimusha: Way of the Sword DEMO, to give players an opportunity to enjoy the appeal of the game as early as possible. In this demo, players can experience a varie

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom