Novel cryptojacking campaign targets Docker APIs

4 February 2024

Threat actors have targeted internet-exposed Docker API endpoints with the advanced Commando Cat cryptojacking campaign since the beginning of the year, The Hacker News reports. Attacks commenced with the infiltration of vulnerable Docker instances, which were later exploited to facilitate the delivery of additional payloads and shell scripts before proceeding with credential exfiltration and the deployment of a Base64-encoded payload that delivers the XMRig cryptocurrency mining malware, according to a report from Cado Security Labs.

Source: SC Magazine

Date:

4 February 2024

Categorie(s):

NEWS

Tag(s):

Docker APIs, IT, News, Novel, Threat Intelligence

Attackers evade detection by leveraging Microsoft Graph API3 May 2024
Microsoft details broad plan to enhance its cybersecurity practices3 May 2024
You get a passkey, you get a passkey, everyone should get a passkey3 May 2024
Dell Advances Data Protection Portfolio Amid Rising Cyber Threats3 May 2024
Best Identity Theft Protection and Monitoring Services for 2024: Aura Is Our New Winner – CNET3 May 2024