Container escape on zCX - DEFCON 2913 Sep 2021
I can recommend this video about two hackers escaping a running container deployed on IBM zCX feature. It is interesting to see the approach from both sides (z/OS and Linux).
Yes, they escaped the linux container. In fact, they did not escape from the virtual machine (running a s390x Linux Ubuntu based image) to the running zCX address space.
I am curious what will come in the future.