Security News > 2024 > October > Cybercriminals Exploiting Docker API Servers for SRBMiner Crypto Mining Attacks
2024-10-22 14:00
Bad actors have been observed targeting Docker remote API servers to deploy the SRBMiner crypto miner on compromised instances, according to new findings from Trend Micro. "In this attack, the threat actor used the gRPC protocol over h2c to evade security solutions and execute their crypto mining operations on the Docker host," researchers Abdelrahman Esmail and Sunil Bharti said in a technical
News URL
https://thehackernews.com/2024/10/cybercriminals-exploiting-docker-api.html
Related news
- Triplestrength hits victims with triple trouble: Ransomware, cloud hijacks, crypto-mining (source)
- North Korea targets crypto developers via NPM supply chain attack (source)
- Cybercriminals shift focus to social media as attacks reach historic highs (source)
- New OpenSSH flaws expose SSH servers to MiTM and DoS attacks (source)
- Bybit Confirms Record-Breaking $1.5 Billion Crypto Heist in Sophisticated Cold Wallet Attack (source)
- GitVenom attacks abuse hundreds of GitHub repos to steal crypto (source)
- Over 37,000 VMware ESXi servers vulnerable to ongoing attacks (source)