Sysdig Usage Report Finds Shifting Container Security Left is Not Enough
Sysdig, Inc., the secure DevOps leader, today announced findings from its Sysdig 2021 Container Security and Usage Report. While usage reveals organizations are shifting left by scanning images during the build phase, DevOps teams are still leaving their environments open to attack. The report also looks at trends, finding a 310 percent growth in container density since 2017.
The fourth annual report reveals how global Sysdig customers of all sizes and across industries are using and securing container environments. This real-world, real-time data provides insight into usage of the nearly one billion containers Sysdig customers run yearly, including security risks, container utilization, and services used. Read the Sysdig 2021 Container Security and Usage blog.
Among its findings, the report states that while 74 percent of customers are scanning before deployment, still more than half (58 percent) of containers are running as root. There are some containers that should run as root—security and system daemons for example—but this is a small portion of total containers. These risky configurations leave easy access to potentially compromise the system and access sensitive data. This finding stresses the need for security throughout the lifecycle of a container image—fixing vulnerabilities is not enough.
Highlights From the Report
Container density grows 170% since 2018
Over the past three years, the median number of containers-per-host more than doubled from 15 in 2018 to 41 today, indicating a growth in efficiency and a shift in cost savings as containers mature. This reveals a continued focus on optimization.
Prometheus continues to grow, 35% YoY
Open source adoption is broader than just Kubernetes as organizations are shifting toward Prometheus as the standard approach to monitoring container environments. The use of Prometheus metrics among Sysdig customers grew 35 percent year-over-year.
Docker down, containerd and CRI-O up 4X
In 2017, Docker represented 99 percent of containers in use at that time. Today, that number has fallen to 50 percent, down from 79 percent in October 2019. While Docker revolutionized containers, organizations are rapidly switching to newer runtimes like containerd and CRI-O.
21% of containers live less than 10 seconds
The ephemeral nature of containers is a unique efficiency advantage, yet it can be a challenge in managing issues around security, health, and performance. The short life of containers reaffirms the need for container-specific tools for security and monitoring. For example, organizations need metric collection with intervals of less than 10 seconds and a detailed record of what occurred when the container was alive.
“With the high-profile breaches we are seeing and the accelerated adoption of containers in production, the container security risk is now on the radar of CISOs. Across millions of containers that we have studied, it’s clear that organizations are shifting security left, but they are neglecting critical best practices,” said Suresh Vasudevan, chief executive officer of Sysdig. “Container security has to span the entire software development lifecycle. Until organizations fix risky configurations, protect their runtime environments, and invest in container forensics, we will see an increase in container security breaches. I expect we will see several high-impact breaches before we release our next report.”
Other Interesting Findings
- Falco, the open source runtime project for cloud-native environments created by Sysdig and donated to the CNCF, has seen a 300 percent increase in Docker Hub downloads over the last year.
- The use of golang increased to 66 percent, a 470 percent jump since last year.
- 63 percent of container images are replaced within two weeks or less, signifying a more frequent code deployment rate.
Learn More About this Report
- Download the full Sysdig 2021 Container Security and Usage Report.
- Download the infographic.
- Read the usage report blog.
- Join the webinar Real-World Insights: Dig into Sysdig’s Container Security and Usage Report on Jan. 21 at 10am PST to walk through the report with the author.
About Sysdig
Sysdig is driving the secure DevOps movement, empowering organizations to confidently secure containers, Kubernetes, and cloud services. With the Sysdig Secure DevOps Platform, cloud teams secure the build pipeline, detect and respond to runtime threats, continuously validate compliance, and monitor and troubleshoot cloud infrastructure and services. Sysdig is a SaaS platform, built on an open source stack that includes Falco and sysdig OSS, the open standards for runtime threat detection and response. Hundreds of companies rely on Sysdig for container and Kubernetes security and visibility. Learn more at www.sysdig.com.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20210113005319/en/
Contact information
Amanda McKinney Smith
(703) 473-4051
amanda.smith@sysdig.com
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Ant Group’s AI Health Service AQ Upgrades PC Platform with DeepSearch for Evidence-Based Clinical Decision Support21.1.2026 05:12:00 EET | Press release
Ant Group today announced a major upgrade to the PC platform of its AI-native health assistant, AQ, introducing DeepSearch for clinicians, a new capability designed to support evidence-based clinical decision-making. The service is available free of charge to clinicians and medical students. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260120591991/en/ AQ’s PC platform provides medical professionals with two core capabilities: Health Q&A and DeepSearch. It supports medical literature search, clinical practice, and research, helping reduce clinicians’ day-to-day workload while improving access to high-quality medical information. To ensure accuracy and reliability, AQ rigorously curates its sources based on recognized levels of evidence. The platform integrates more than 36 million high-quality Chinese and international medical publications, making its clinical decision support closely aligned with real-world practice. Deep
NIKE, Inc. Announces New Geography Leadership Appointments20.1.2026 23:15:00 EET | Press release
NIKE, Inc. (NYSE: NKE) today shared the following note with teammates regarding changes to its Senior Leadership Team: This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260120575539/en/ César Garcia, VP/GM Nike Europe, Middle East and Africa (EMEA) To: Lst-Global From: EHill Subject: Leadership Announcements Team, In recent months, the Senior Leadership Team has benefited from having our Geography VP/GMs at the table helping us move faster and bringing us closer to athletes* in both countries and marketplaces around the world. As we continue to drive our Win Now actions and stand up our Sport Offense, I’d like to share several important leadership changes across three of our Geo VP/GM roles. EMEA Carl Grebert, a true legend on our team, has decided to retire after nearly 30 years of service and leadership across global, country and geography roles across the company. Carl shared his thinking with me some time ago, and I’m deepl
Xsolla Expands Payment Coverage in Portugal With MB Way, a Leading Mobile Wallet Trusted by 6 Million Customers, to Unlock New Growth Opportunities for Game Developers20.1.2026 17:41:00 EET | Press release
Xsolla, a global video game commerce company that helps developers launch, grow, and monetize their games, today announced the expansion of its payments solution in Portugal with the addition of MB Way. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260120938007/en/ Graphic: Xsolla Portugal is a leader in digital transformation, with nearly 90% of its population online, high smartphone usage, and a strong adoption of mobile banking. Trusted by 6 million people, connected to 11 million cards, supported by 28 banks, and driving 496 million transactions in 2024, MB Way provides 95% market coverage, allowing most bank customers to use the service. MB Way is the leading mobile wallet in Portugal, with an estimated market share of 34%-45% of all e-commerce transactions locally. By adding MB Way as a payment method to its portfolio, Xsolla continues to deliver the fast and flexible payment experience Portuguese players expect. Key
Andersen Consulting Adds Collaborating Firm Africa International Advisors20.1.2026 16:30:00 EET | Press release
Andersen Consulting extends its strategy and business transformation capabilities in Africa through a Collaboration Agreement with Africa International Advisors (AIA), a Johannesburg-based firm focusing on enhancing business competitiveness through sector specific insights, innovation and advisory services. Founded in 2002, AIA is a pan-African management consulting firm that delivers strategy-led advisory services with a focus on digital transformation and AI-driven business outcomes. The firm advises clients across sectors including energy and resources, oil and gas, infrastructure, trade and logistics, financial services, banking, and telecom. AIA’s strategic perspective, local credibility, and market access enable it to design and implement solutions that align people, processes, and technology to drive meaningful change. “From the beginning, our mission has been to drive progress through an Africa-centered lens, grounded in the realities and ambitions of the continent,” said Hasna
Balena Secures Strategic Growth Investment to Accelerate Edge AI and IoT Fleet Management20.1.2026 16:14:00 EET | Press release
Balena, the leading platform for deploying, managing, and scaling fleets of edge computing and AI devices, today announced a strategic growth investment from LoneTree Capital (“LoneTree”), a New York-based growth capital firm. The partnership will accelerate Balena’s product innovation with a focus on Edge AI workloads and security features to meet evolving compliance needs, while expanding resources for customer success and global fleet support. Founded in 2011, Balena enables customers to leverage the ever-increasing power of technology to solve real-world problems by providing software to manage the full lifecycle of edge computing devices. The platform abstracts away infrastructure complexity, handling critical tasks like secure Over-The-Air (OTA) updates so engineering teams can focus on their core product. As a truly hardware-agnostic solution, Balena empowers customers to deploy their applications, including intensive Edge AI workloads, on the devices of their choice, avoiding v
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom