Security News > 2021 > October > Huawei Cloud targeted by updated cryptomining malware
A new version of a Linux crypto-mining malware previously used to target Docker containers in 2020 now focuses on new cloud service providers like the Huawei Cloud.
The analysis of the new campaign comes from researchers at TrendMicro, who explains how the malware has evolved with new features while retaining its previous functionality.
The new malware version only targets cloud environments and is now seeking out and removing any other cryptojacking scripts that may have previously infected the system.
When infecting a Linux system, the malicious coinminer will perform the following steps, which include the removal of users creating by competing crypto-mining malware distributors.
Huawei Cloud is a relatively new service, but the Chinese tech giant claims it's already serving over three million customers.
Whether you deploy your instances, keep in mind that running vulnerability assessments and malware scans may not be enough to defend against this attack.
News URL
Related news
- Linux malware “perfctl” behind years-long cryptomining campaign (source)
- Linux systems targeted with stealthy “Perfctl” cryptomining malware (source)
- Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining (source)
- AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services (source)