Hackers use public DevOps tools to conduct cryptocurrency mining attacks "
Internet reports that security company Wiz discovered that a hacker group codenamed JINX-0132 is using DevOps tool configuration vulnerabilities on a large scale to conduct cryptocurrency mining attacks. The attack mainly targets tools such as HashiCorp Nomad/Consul, Docker API and Gitea, and approximately 25% of cloud environments are at risk. Attack methods include: deploying XMRig mining software using Nomad's default configuration, executing malicious scripts through Consul's unauthorized API, and controlling exposed Docker APIs to create mining containers.
Disclaimer: The views in this article are from the original Creator and do not represent the views or position of Hawk Insight. The content of the article is for reference, communication and learning only, and does not constitute investment advice. If it involves copyright issues, please contact us for deletion.
